CSSLP Question #287: Real Exam Question with Answer & Explanation

The correct answer is A: SSL. To secure web services and ensure secure transactions, SSL (Secure Sockets Layer) is recommended as it encrypts communication between the web server and client.

Secure Software Architecture and Design

Question

You work as a Network Administrator for uCertify Inc. You need to secure web services of your company in order to have secure transactions. Which of the following will you recommend for providing security?

Options

ASSL
BVPN
CS/MIME
DHTTP

Explanation

To secure web services and ensure secure transactions, SSL (Secure Sockets Layer) is recommended as it encrypts communication between the web server and client.

Common mistakes.

B. VPNs provide secure network connections over an insecure network but are not primarily used to secure individual web services at the application layer for general public access.
C. S/MIME is used for securing email communications (signing and encrypting emails), not for securing general web services.
D. HTTP is the unencrypted Hypertext Transfer Protocol and provides no security for transactions, making it unsuitable for secure web services.

Concept tested. Securing web communications with SSL/TLS

Reference. https://learn.microsoft.com/en-us/windows-server/security/tls/transport-layer-security-protocol-overview

Topics

#Web services security#SSL/TLS#Secure transactions#Data in transit protection

Community Discussion

No community discussion yet for this question.

Full CSSLP Practice Browse All CSSLP Questions