Which component in a CDN token-signing flow is considered the shared secret and must never be exposed publicly?
-
A
The CDN edge node's IP address
-
B
The HMAC signing key stored on both the origin application and CDN configuration
-
C
The user's session cookie value
-
D
The expiry timestamp appended to the URL