🔥 3-day streak
Professional Cloud Security Engineer33 / 152
Question 33 of 152

A financial services company needs to digitally sign software release artifacts so that downstream consumers can verify authenticity and integrity without ever having access to the private signing key. The security team wants Google Cloud to generate and store the private key material such that it can never be exported, while allowing external partners to obtain the public key for verification. Which Cloud KMS approach should they implement?

Reviewed for accuracy · Report an issueNext question