CompTIA
CAS-002 · Question #870
CAS-002 Question #870: Real Exam Question with Answer & Explanation
The correct answer is A: One time pads. This question identifies the encryption scheme that uses symmetric keys, is theoretically unbreakable, but demands exceptional key management overhead that makes it cost-prohibitive.
Question
A security solutions architect has argued consistently to implement the most secure method of encrypting corporate messages. The solution has been derided as not being cost effective by other members of the IT department. The proposed solution uses symmetric keys to encrypt all messages and is very resistant to unauthorized decryption. The method also requires special handling and security for all key material that goes above and beyond most encryption systems. Which of the following is the solutions architect MOST likely trying to implement?
Options
- AOne time pads
- BPKI
- CQuantum cryptography
- DDigital rights management
Explanation
This question identifies the encryption scheme that uses symmetric keys, is theoretically unbreakable, but demands exceptional key management overhead that makes it cost-prohibitive.
Common mistakes.
- B. PKI uses asymmetric encryption based on mathematically related public and private key pairs, not symmetric keys as specified in the question stem.
- C. Quantum cryptography uses principles of quantum mechanics such as quantum key distribution (QKD) to detect eavesdropping - it is not a traditional symmetric key encryption system as described.
- D. Digital rights management is a framework for enforcing access and usage policies on digital content, not a standalone cryptographic algorithm or encryption method with the properties described in the question.
Concept tested. One-time pad properties - symmetric key, perfect secrecy, key management cost
Community Discussion
No community discussion yet for this question.