nerdexam
ExamsSY0-301Questions#700
CompTIA

SY0-301 · Question #700

SY0-301 Question #700: Real Exam Question with Answer & Explanation

The correct answer is A: Blowfish. Blowfish supports variable key lengths from 32 to 448 bits, meaning it can be configured to meet or exceed 128-bit effective security. It is a legitimate symmetric block cipher suitable for VPN tunnel encryption. DES (Option B) has only a 56-bit key length, which falls far below

Question

Jane, a VPN administrator, was asked to implement an encryption cipher with a MINIMUM effective security of 128-bits. Which of the following should Jane select for the tunnel encryption?

Options

  • ABlowfish
  • BDES
  • CSHA256
  • DHMAC

Explanation

Blowfish supports variable key lengths from 32 to 448 bits, meaning it can be configured to meet or exceed 128-bit effective security. It is a legitimate symmetric block cipher suitable for VPN tunnel encryption. DES (Option B) has only a 56-bit key length, which falls far below the 128-bit minimum requirement and is considered cryptographically broken. SHA-256 (Option C) is a cryptographic hash function used for integrity verification and digital signatures - it is not an encryption cipher and cannot encrypt tunnel traffic. HMAC (Option D) is a Hash-based Message Authentication Code used to verify message integrity and authenticity - again, it is not an encryption cipher and cannot fulfill the tunnel encryption role. Blowfish is the only listed option that is both an encryption cipher and capable of 128-bit or higher security.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full SY0-301 Practice
Jane, a VPN administrator, was asked to implement an encryption... | SY0-301 Q#700 Answer | NerdExam