CiscoCisco
350-401 · Question #1059
350-401 Question #1059: Real Exam Question with Answer & Explanation
The correct answer is B: TLS or SSL for communication. To protect credentials from sniffer attacks during basic API authentication, utilizing TLS or SSL encrypts the communication channel, making any intercepted data unreadable.
Submitted by renata2k· Mar 6, 2026DOMAIN_LIST_NOT_PROVIDED
Question
Which security option protects credentials from sniffer attacks in a basicAPI authentication?
Options
- Anext-generation firewall
- BTLS or SSL for communication
- CVPN connection between client and server
- DAAA services to authenticate the API
Explanation
To protect credentials from sniffer attacks during basic API authentication, utilizing TLS or SSL encrypts the communication channel, making any intercepted data unreadable.
Common mistakes.
- A. A next-generation firewall offers various security functions such as intrusion prevention and application control, but it does not inherently encrypt the data in transit between endpoints to protect credentials from sniffer attacks.
- C. While a VPN creates an encrypted tunnel for network traffic, using TLS/SSL directly on the API communication provides application-layer encryption, which is the most direct and universally applicable method for protecting credentials specifically sent with basic API authentication.
- D. AAA services are responsible for authenticating, authorizing, and accounting for user access, but they do not provide encryption for the credentials themselves during transmission across the network.
Concept tested. API security best practices (TLS/SSL for data in transit)
Reference. https://developer.cisco.com/docs/api-security-guide/
Topics
#API security#TLS/SSL#Credential protection#Sniffing prevention
Community Discussion
No community discussion yet for this question.