nerdexam
ExamsCAS-002Questions#64
CompTIA

CAS-002 · Question #64

CAS-002 Question #64: Real Exam Question with Answer & Explanation

The correct answer is A: Transport encryption. Two distinct security goals are stated: (1) prevent network sniffers from reading email content, and (2) establish non-repudiation so users cannot deny sending messages. Transport encryption (A), such as TLS/SSL applied to the email transmission, directly addresses goal 1 by encr

Question

An employee of a company files a complaint with a security administrator. While sniffing network traffic, the employee discovers that financially confidential emails were passing between two warehouse users. The two users deny sending confidential emails to each other. Which of the following security practices would allow for non-repudiation and prevent network sniffers from reading the confidential mail? (Select TWO).

Options

  • ATransport encryption
  • BAuthentication hashing
  • CDigital signature
  • DLegal mail hold
  • ETSIG code signing

Explanation

Two distinct security goals are stated: (1) prevent network sniffers from reading email content, and (2) establish non-repudiation so users cannot deny sending messages. Transport encryption (A), such as TLS/SSL applied to the email transmission, directly addresses goal 1 by encrypting data in transit so that even if traffic is captured, it cannot be read. Digital signatures (C) address goal 2: a digital signature mathematically binds the message to the sender's private key, making it cryptographically verifiable and non-repudiable - the sender cannot credibly deny authorship. Authentication hashing (B) verifies identity but does not prevent sniffing. Legal mail hold (D) is a legal/compliance tool, not a technical security control. TSIG (E) is used for DNS transaction authentication, not email.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CAS-002 Practice