Arcitura Education S90.18 Exam - Topic 5 Question 3 Discussion

Actual exam question for Arcitura Education's S90.18 exam

Question #: 3
Topic #: 5

Service A and Service B belong to Organization A and Service C belongs to Organization B. Service A sends confidential messages to Service B, which forwards these messages to Service C. The message sent to Service C is intercepted by a load balancing service agent that determines which instance of Service C to route the message to. This entire message path needs to be encrypted in order to ensure message confidentiality from when the message is first sent by Service A until it is received by an instance of Service C. Organization A doesn't trust any intermediaries that may exist in between Service B and Service C and also doesn't want to share any keys with Organization B. Furthermore, there is a requirement to minimize any adverse effects on performance. Which of the following approaches fulfills these requirements?

AUse message-layer security by adding symmetric encryption between Services A, B and C. This way, message content is not available to any intermediaries between Services B and C.

BBecause Service A and Service B exist within the same organizational boundary, use transport-layer security to provide message confidentiality. Use message-layer security via asymmetric encryption between Service B and Service C.

CUse transport-layer security between Service B and Service C and use message-layer security via asymmetric encryption between Service A and Service B. This way. all the services are secured while at the same time minimizing the performance degradation between Service B and Service C.

DNone of the above.

Show Suggested Answer

Suggested Answer: B

by Martina at May 09, 2022, 09:41 AM

Limited Time Offer

25%

5 months ago

I'm feeling confident about this one. The key is to match the circuit size to the business requirements, which should be the focus of my answer.

upvoted 0 times

...