312-50V11 · Question #793
What is one of the advantages of using both symmetric and asymmetric cryptogrsphy in SSL/TLS?
The correct answer is D. Asymmetric cryptography is computationally expensive in comparison. However, it is well-suited. SSL/TLS uses a hybrid cryptographic model where asymmetric cryptography secures the key exchange and symmetric cryptography handles fast bulk data encryption.
Question
What is one of the advantages of using both symmetric and asymmetric cryptogrsphy in SSL/TLS?
Options
- ASupporting both types of algorithms allows less-powerful devices such as mobile phones to use
- BSymmetric algorithms such as AES provide a failsafe when asymmetric methods fail.
- CSymmetric encryption allows the server to security transmit the session keys out-of-band.
- DAsymmetric cryptography is computationally expensive in comparison. However, it is well-suited
How the community answered
(25 responses)- A28% (7)
- B8% (2)
- C16% (4)
- D48% (12)
Why each option
SSL/TLS uses a hybrid cryptographic model where asymmetric cryptography secures the key exchange and symmetric cryptography handles fast bulk data encryption.
Mobile device compatibility is not the technical rationale for the hybrid model - the combination is driven by the performance and key-distribution properties of each algorithm type, not device support.
Symmetric algorithms do not serve as a failsafe for asymmetric failures - in SSL/TLS each type serves a distinct, non-redundant role and one does not back up the other.
It is asymmetric cryptography that enables secure session key establishment, not symmetric encryption - symmetric keys are never independently transmitted as a secure out-of-band mechanism.
Asymmetric cryptography such as RSA is computationally expensive but is well-suited for the TLS handshake key exchange phase because it solves the key distribution problem without requiring a pre-shared secret. Once the session key is established, symmetric encryption takes over for bulk data transfer, providing the speed needed for practical communication without the overhead of asymmetric operations on every byte.
Concept tested: SSL/TLS hybrid cryptography asymmetric and symmetric roles
Source: https://learn.microsoft.com/en-us/windows-server/security/tls/tls-ssl-schannel-ssp-overview
Topics
Community Discussion
No community discussion yet for this question.