Google Cloud Professional Cloud Architect — Question 14

Your customer wants to do resilience testing of their authentication layer. This consists of a regional managed instance group serving a public REST API that reads from and writes to a Cloud SQL instance.
What should you do?

Answer options

• A. Engage with a security company to run web scrapers that look your for users' authentication data om malicious websites and notify you if any is found.
• B. Deploy intrusion detection software to your virtual machines to detect and log unauthorized access.
• C. Schedule a disaster simulation exercise during which you can shut off all VMs in a zone to see how your application behaves.
• D. Configure a read replica for your Cloud SQL instance in a different zone than the master, and then manually trigger a failover while monitoring KPIs for our REST API.

Correct answer: C

Explanation

The correct answer is C because conducting a disaster simulation allows you to assess the application's behavior under failure conditions, which is essential for resilience testing. Options A and B focus on security measures rather than resilience testing, and option D, while related to availability, does not provide the comprehensive testing of application behavior during a full-scale disaster scenario.