Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Arcitura Education S90.18 Exam - Topic 2 Question 81 Discussion

The communication between two services operating within the same organization needs to be protected using message-layer security. These services are only used within the organizational boundary. The question is raised as to whether to use self-signed certificates or certificates signed by a certificate authority. A security specialist states that only certificates signed by an external certificate authority can be used to fulfill this security requirement. Is this correct?
B) No
A) Yes

Arcitura Education S90.18 Exam - Topic 2 Question 81 Discussion

Actual exam question for Arcitura Education's S90.18 exam
Question #: 81
Topic #: 2
[All S90.18 Questions]

The communication between two services operating within the same organization needs to be protected using message-layer security. These services are only used within the organizational boundary. The question is raised as to whether to use self-signed certificates or certificates signed by a certificate authority. A security specialist states that only certificates signed by an external certificate authority can be used to fulfill this security requirement. Is this correct?

Show Suggested Answer Hide Answer
Suggested Answer: B

by Malinda at Feb 11, 2024, 07:55 PM

Limited Time Offer

25%

Off

Get Premium S90.18 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Kelvin
6 months ago
Seems risky to rely on self-signed, though.
upvoted 0 times
...
Elina
7 months ago
No way, self-signed can work just fine for this!
upvoted 0 times
...
Glory
7 months ago
I thought only external CAs were valid for security compliance?
upvoted 0 times
...
Luis
7 months ago
Totally agree, external CA isn't necessary for internal services.
upvoted 0 times
...
Weldon
7 months ago
Self-signed certificates can be used internally.
upvoted 0 times
...
Dorcas
7 months ago
This seems similar to a case we discussed in class, where we concluded that internal services could use self-signed certificates without issues.
upvoted 0 times
...
Fatima
8 months ago
I feel like the specialist is being too strict; I thought self-signed certificates were fine as long as both services trust them.
upvoted 0 times
...
Laila
8 months ago
I think we practiced a question where self-signed certificates were acceptable for internal services, but I can't recall the specifics.
upvoted 0 times
...
Merissa
8 months ago
I remember studying that self-signed certificates can be used for internal communications, but I'm not sure if they meet all security requirements.
upvoted 0 times
...
Cassie
8 months ago
This is a tricky one. The security specialist's statement seems definitive, but I'm not sure if that's the only correct answer. I'll need to review my notes on certificate authorities and organizational boundaries to decide.
upvoted 0 times
...
Ardella
8 months ago
Okay, I've got a strategy here. The key is to focus on the security requirement of message-layer protection. Since the services are internal, self-signed certificates could potentially fulfill that requirement. I'll weigh the pros and cons and make my best judgment.
upvoted 0 times
...
Felice
8 months ago
Hmm, I'm a bit unsure about this one. The question mentions that the services are only used within the organizational boundary, so I'm not sure if that changes the security requirements. I'll need to think this through carefully.
upvoted 0 times
...
Veronika
8 months ago
This seems like a straightforward question about the use of self-signed certificates versus certificates signed by a CA. I think I have a good understanding of the concepts, so I'll carefully read through the details and make my choice.
upvoted 0 times
...
Ahmad
8 months ago
I'm a bit confused on this one. The requirements seem to conflict a bit - 24-hour availability but also the ability to control failover. I'm not sure if any of these options fully meet all the criteria. I might need to do some more research on disaster recovery solutions to figure out the best approach.
upvoted 0 times
...
Isadora
8 months ago
I'm a bit unsure about this one. The options mention different maintenance menus, but I'm not sure which one specifically shows the software release details for all the nodes. I'll have to think this through carefully.
upvoted 0 times
...
Renea
8 months ago
Hmm, I'm hesitant, but I feel like **D - Visibility/Graphic Overrides** could also relate to controlling boundaries in plan views.
upvoted 0 times
...
Harris
8 months ago
I'm pretty sure it's not option 'A', because I remember there should be a 'type' like 'text/css' in it too.
upvoted 0 times
...
Breana
8 months ago
Ugh, I hate questions like this that are so specific and technical. I'm going to have to guess on this one since I don't have a good intuitive feel for the right bend radius. Maybe I'll just go with C since it's the middle option.
upvoted 0 times
...
Lawana
2 years ago
I disagree, I think self-signed certificates are sufficient for internal communication.
upvoted 0 times
...
Carey
2 years ago
I'm not sure, but I think the security specialist is correct. External certificates are generally more trusted.
upvoted 0 times
...
Daron
2 years ago
I agree with Eladia, external certificate authority signed certificates provide stronger security assurance.
upvoted 0 times
...
Anissa
2 years ago
But why can't we just use self-signed certificates? They are easier and more cost-effective.
upvoted 0 times
...
Eladia
2 years ago
I think we should use certificates signed by an external certificate authority.
upvoted 0 times
...

Save Cancel