nerdexam
EC-Council

312-50V10 · Question #358

What is the primary drawback to using advanced encryption standard (AES) algorithm with a 256 bit key to share sensitive data?

The correct answer is D. It is a symmetric key algorithm, meaning each recipient must receive the key through a different. AES-256 is a strong, fast cipher, but because it is symmetric, every recipient must securely receive the same secret key - creating a key distribution problem that limits its practicality for sharing data with multiple parties.

Cryptography

Question

What is the primary drawback to using advanced encryption standard (AES) algorithm with a 256 bit key to share sensitive data?

Options

  • ADue to the key size, the time it will take to encrypt and decrypt the message hinders efficient
  • BTo get messaging programs to function with this algorithm requires complex configurations.
  • CIt has been proven to be a weak cipher; therefore, should not be trusted to protect sensitive data.
  • DIt is a symmetric key algorithm, meaning each recipient must receive the key through a different

How the community answered

(56 responses)
  • A
    2% (1)
  • B
    2% (1)
  • C
    5% (3)
  • D
    91% (51)

Why each option

AES-256 is a strong, fast cipher, but because it is symmetric, every recipient must securely receive the same secret key - creating a key distribution problem that limits its practicality for sharing data with multiple parties.

ADue to the key size, the time it will take to encrypt and decrypt the message hinders efficient

AES-256 is computationally efficient even at 256-bit key sizes; the larger key size does not meaningfully hinder encryption or decryption performance in modern implementations.

BTo get messaging programs to function with this algorithm requires complex configurations.

AES is natively supported by most modern operating systems, hardware, and messaging libraries, requiring no unusually complex configuration to use.

CIt has been proven to be a weak cipher; therefore, should not be trusted to protect sensitive data.

AES has not been proven weak; it remains unbroken and is trusted by NIST and security agencies worldwide for protecting classified information.

DIt is a symmetric key algorithm, meaning each recipient must receive the key through a differentCorrect

AES is a symmetric algorithm, meaning the identical 256-bit key must be shared with every intended recipient before they can decrypt the data. Securely transmitting this key to each recipient over an untrusted channel is the key distribution problem, and it typically requires an out-of-band channel or an asymmetric key exchange mechanism such as RSA or Diffie-Hellman. The more recipients involved, the more complex and risky the key distribution becomes.

Concept tested: AES symmetric key distribution challenge

Source: https://csrc.nist.gov/publications/detail/fips/197/final

Topics

#AES 256-bit#symmetric key distribution#key management#encryption tradeoffs

Community Discussion

No community discussion yet for this question.

Full 312-50V10 Practice