nerdexam
Exams101Questions#489
F5

101 · Question #489

101 Question #489: Real Exam Question with Answer & Explanation

The correct answer is C: Server Name indication. Server Name Indication (SNI) is the TLS extension that allows a single virtual server to serve multiple HTTPS websites by transmitting the target hostname during the TLS handshake.

Question

Which Transport Layer Security (TLS) extension can be used to enable a single virtual server to serve multiple HTTPS websites in different can be used to enable a single virtual server to server domains?

Options

  • ASession Tickets
  • BOCSP Staping
  • CServer Name indication
  • DCertificate Status Request

Explanation

Server Name Indication (SNI) is the TLS extension that allows a single virtual server to serve multiple HTTPS websites by transmitting the target hostname during the TLS handshake.

Common mistakes.

  • A. Session Tickets are a TLS extension used for session resumption to reduce handshake overhead and improve performance, not for hosting multiple domains.
  • B. OCSP Stapling allows the server to attach a pre-fetched certificate revocation response to the TLS handshake, which is unrelated to multi-domain virtual server hosting.
  • D. Certificate Status Request is the TLS extension mechanism that requests OCSP revocation status from the server, not a feature for serving multiple domains on one virtual server.

Concept tested. TLS Server Name Indication for multi-domain virtual hosting

Reference. https://www.rfc-editor.org/rfc/rfc6066

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 101 Practice