CiscoCisco
350-401 · Question #968
350-401 Question #968: Real Exam Question with Answer & Explanation
The correct answer is B: SSL certificates. SSL/TLS certificates are critical for mitigating man-in-the-middle attacks on REST APIs by authenticating the server and encrypting the communication channel.
Submitted by dimitri_ru· Mar 6, 2026Security
Question
Which security measure mitigates a man-in-the-middle attack of a REST API?
Options
- Apassword hash
- BSSL certificates
- Cnonrepudiation feature
- Dbiometric authentication
Explanation
SSL/TLS certificates are critical for mitigating man-in-the-middle attacks on REST APIs by authenticating the server and encrypting the communication channel.
Common mistakes.
- A. Password hashing protects passwords stored in a database from compromise but does not secure the communication channel itself against interception during an active transaction.
- C. Non-repudiation typically ensures that an action cannot be denied by the sender or receiver, often via digital signatures, but it doesn't primarily prevent the real-time interception and modification of data in transit.
- D. Biometric authentication verifies a user's identity based on physical attributes, but it does not secure the actual communication channel over which the REST API operates.
Concept tested. REST API man-in-the-middle protection
Reference. https://learn.microsoft.com/en-us/azure/architecture/best-practices/api-security
Topics
#API Security#SSL/TLS#Man-in-the-middle attack
Community Discussion
No community discussion yet for this question.