nerdexam
GIAC

GSEC · Question #396

GSEC Question #396: Real Exam Question with Answer & Explanation

The correct answer is A. S/MIME C. PGP. S/MIME and PGP are the two established standards for end-to-end encryption and digital signing of email messages in transit over the Internet.

Question

Which of the following are the ways of sending secure e-mail messages over the Internet? Each correct answer represents a complete solution. Choose two.

Options

  • AS/MIME
  • BTLS
  • CPGP
  • DIPSec

Explanation

S/MIME and PGP are the two established standards for end-to-end encryption and digital signing of email messages in transit over the Internet.

Common mistakes.

  • B. TLS secures the transport channel between mail servers (e.g., SMTP over TLS), but it does not provide end-to-end message encryption - the email content is decrypted at each mail server hop, so it is not a complete solution for securing the message itself.
  • D. IPSec operates at the network layer (Layer 3) to secure IP traffic between hosts or networks, and while it can protect the network path, it does not provide email-specific end-to-end message encryption or digital signing.

Concept tested. End-to-end secure email encryption standards

Reference. https://learn.microsoft.com/en-us/exchange/security-and-compliance/smime-exo/smime-exo

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full GSEC Practice