312-50V13 · Question #6
312-50V13 Question #6: Real Exam Question with Answer & Explanation
The correct answer is B: Ipsec. IPsec (Option B) operates at Layer 3 (Network Layer) of the OSI model, making it the only choice that provides end-to-end encryption at that layer. It encrypts all IP traffic passing between two endpoints, meaning it can secure FTP (or any other protocol) transparently without mo
Question
Although FTP traffic is not encrypted by default, which layer 3 protocol would allow for end-to-end encryption of the connection?
Options
- ASFTP
- BIpsec
- CSSL
- DFTPS
Explanation
IPsec (Option B) operates at Layer 3 (Network Layer) of the OSI model, making it the only choice that provides end-to-end encryption at that layer. It encrypts all IP traffic passing between two endpoints, meaning it can secure FTP (or any other protocol) transparently without modifying the application itself.
Why the distractors are wrong:
- A. SFTP is a secure file transfer protocol that operates at Layer 7 (Application Layer), using SSH for encryption - not Layer 3.
- C. SSL also operates at the Application/Transport Layer (Layer 4-7) boundary, not Layer 3.
- D. FTPS is FTP with SSL/TLS added, again functioning at the Application Layer (Layer 7), not Layer 3.
Memory Tip: Think "IP"sec = IP Layer = Layer 3" - the "IP" in IPsec is your clue that it works at the same layer as the Internet Protocol itself. Any time an exam question asks about Layer 3 encryption, IPsec is almost always the answer.
Topics
Community Discussion
No community discussion yet for this question.