Developing Applications Using Cisco Core Platforms and APIs (DEVCOR) — Question 65

Which two methods are API security best practices? (Choose two.)

Answer options

• A. Use tokens after the identity of a client has been established.
• B. Use the same operating system throughout the infrastructure.
• C. Use encryption and signatures to secure data.
• D. Use basic auth credentials over all internal API interactions.
• E. Use cloud hosting services to manage security configuration.

Correct answer: A, C

Explanation

The correct answers, A and C, highlight the importance of using tokens for client verification and securing data through encryption and signatures. Options B, D, and E do not directly address API security best practices; using the same OS does not mitigate API vulnerabilities, while basic auth is less secure and cloud services focus on hosting rather than API security.