SSCP Question #1037: Real Exam Question with Answer & Explanation

The correct answer is B: IPSec provides confidentiality and integrity to information transferred over IP. This statement is incorrect as an absolute claim because IPSec has two main modes: AH (Authentication Header) provides integrity and authentication but does NOT provide confidentiality (no encryption). Only ESP (Encapsulating Security Payload) provides confidentiality. Therefore

Submitted by joshua94· Apr 18, 2026Network and Communications Security

Question

Which of the following statements pertaining to IPSec is incorrect?

Options

AIPSec can help in protecting networks from some of the IP network attacks.
BIPSec provides confidentiality and integrity to information transferred over IP
CIPSec protects against man-in-the-middle attacks.
DIPSec protects against spoofing.

Explanation

This statement is incorrect as an absolute claim because IPSec has two main modes: AH (Authentication Header) provides integrity and authentication but does NOT provide confidentiality (no encryption). Only ESP (Encapsulating Security Payload) provides confidentiality. Therefore IPSec does not universally provide both properties - it depends on which protocol/mode is deployed. Statements A, C, and D are all valid: IPSec does help mitigate IP-layer attacks, MITM attacks (via mutual authentication), and IP spoofing (via packet authentication).

Topics

#IPSec#Network Protocols#Data Confidentiality#Data Integrity

Community Discussion

No community discussion yet for this question.

Full SSCP Practice Browse All SSCP Questions