Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

ISC2 ISSAP Exam - Topic 3 Question 75 Discussion

Actual exam question for ISC2's ISSAP exam
Question #: 75
Topic #: 3
[All ISSAP Questions]

Which of the following security protocols provides confidentiality, integrity, and authentication of network traffic with end-to-end and intermediate-hop security?

Show Suggested Answer Hide Answer
Suggested Answer: A

password to each application. In SSO, a user can access all computer applications and systems where he has access permission without

entering multiple passwords. This reduces human error and systems failure and is therefore highly desirable. There are many commercial SSO

solutions available in the market. Some of them are as follows:

Central Authentication Service (CAS)

The Dutch NREN

CoSign

Enterprise Single Sign-On (E-SSO)

Web Single Sign-On (Web SSO)

Security Assertion Markup Language (SAML)

Direct SSO

Shibboleth

Answer option B is incorrect. A one-time password (OTP) is a password only valid for a single login session or transaction. OTP avoids a

number of shortcomings that are associated with traditional passwords. The most important shortcoming that is addressed by OTP is that OTP

is not vulnerable to replay attacks. If a potential intruder manages to record an OTP that was already used to log into a service or to conduct

a transaction, he will not be able to abuse it since it will be no longer valid.

Answer option D is incorrect. Kerberos is a secure protocol that supports ticketing authentication. A ticket is granted in response to a client

computer authentication request by the Kerberos authentication server, if the request contains valid user credentials and a valid Service

Principal Name (SPN). The ticket is then used by the client computer to access network resources. To enable Kerberos authentication, the

client and server computers must have a trusted connection to the domain Key Distribution Center (KDC). The task of KDC is to distribute

shared secret keys to enable encryption.

Answer option C is incorrect. In the dynamic password authentication scheme, passwords are changed after a specified time or time interval.


by Valentine at Oct 21, 2023, 07:21 PM

Limited Time Offer

25%

Off

Get Premium ISSAP Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Maricela
5 months ago
Really surprised IPSec is still the top choice!
upvoted 0 times
...
Buddy
5 months ago
I thought SWIPE was outdated?
upvoted 0 times
...
Nickole
5 months ago
Wait, isn't SET more for payment security?
upvoted 0 times
...
Tayna
5 months ago
Definitely IPSec, it covers all bases.
upvoted 0 times
...
Brande
5 months ago
IPSec is the go-to for that!
upvoted 0 times
...
Theodora
6 months ago
I’m leaning towards IPSec too, but I vaguely remember something about SKIP being used for key management. Not sure if it fits this question though.
upvoted 0 times
...
Avery
6 months ago
SWIPE sounds familiar, but I can't recall its specific use case. I feel like it might not cover all the requirements mentioned in the question.
upvoted 0 times
...
Melynda
6 months ago
I remember practicing a question about security protocols, and I think SET was related to secure transactions, but it doesn’t provide the same level of network security as IPSec.
upvoted 0 times
...
Ernest
6 months ago
I think IPSec is the right answer because it’s often used for securing IP communications, but I'm not completely sure about the other options.
upvoted 0 times
...
King
6 months ago
I'm a little confused by the wording of this question. Can someone explain the differences between these security protocols to me? I want to make sure I select the right one.
upvoted 0 times
...
Mose
6 months ago
Hmm, I'm a bit unsure about this one. I know IPSec is a common security protocol, but I'm not 100% certain it's the right answer.
upvoted 0 times
...
Janine
6 months ago
I'm pretty sure this is asking about IPSec, since it provides the security features mentioned in the question.
upvoted 0 times
...
Arlean
6 months ago
Okay, let me think this through. IPSec seems like the best option based on the details provided. I'll go with that unless I can think of a better answer.
upvoted 0 times
...
Adelina
6 months ago
Hmm, I'm a bit unsure about this one. The options don't seem to directly match the question. I'll have to think it through carefully.
upvoted 0 times
...
Willard
6 months ago
I'm a bit unsure about this one. Does the question mean that reducing maintenance costs by delivering a quality product will impact ROI? Or is it saying that delivering a quality product will reduce maintenance costs, which will then impact ROI? I'll have to think this through carefully.
upvoted 0 times
...
Shawna
11 months ago
IPSec all the way! It's the gold standard for network security. The other choices sound like something you'd find in a spy novel, not a real-world networking exam.
upvoted 0 times
Mitsue
11 months ago
Yeah, the other options sound more like something out of a spy novel.
upvoted 0 times
...
Tamar
11 months ago
I agree, IPSec is the gold standard for network security.
upvoted 0 times
...
Dell
11 months ago
IPSec is definitely the way to go for top-notch security.
upvoted 0 times
...
...
Leontine
12 months ago
I'm going with IPSec. Can't go wrong with the industry standard for secure network traffic. The other options just sound like they're trying too hard to be 'innovative'.
upvoted 0 times
...
Matthew
12 months ago
Ha! SKIP, really? That's about as secure as skipping stones across a pond. IPSec is the way to go, no doubt about it.
upvoted 0 times
Trina
11 months ago
User 4: IPSec provides end-to-end and intermediate-hop security for network traffic.
upvoted 0 times
...
Yolando
11 months ago
User 3: SWIPE and SET are also not as secure as IPSec.
upvoted 0 times
...
Sharika
11 months ago
User 2: I agree, SKIP doesn't sound very reliable.
upvoted 0 times
...
Domitila
11 months ago
User 1: IPSec is definitely the most secure option.
upvoted 0 times
...
...
Oretha
12 months ago
I was thinking IPSec too, but then I saw that SKIP option and got a bit confused. Isn't that some sort of encryption method?
upvoted 0 times
...
Ettie
12 months ago
IPSec definitely sounds like the right answer here. It's the go-to protocol for secure network communication, right?
upvoted 0 times
Lea
11 months ago
That's right! IPSec is widely used for securing communication over networks.
upvoted 0 times
...
Kindra
11 months ago
Yes, IPSec is the correct answer. It provides confidentiality, integrity, and authentication for network traffic.
upvoted 0 times
...
Ty
11 months ago
That's right! IPSec is widely used for securing network communication with end-to-end and intermediate-hop security.
upvoted 0 times
...
Gracia
11 months ago
Yes, IPSec is the correct answer. It provides confidentiality, integrity, and authentication for network traffic.
upvoted 0 times
...
...
Alyce
1 year ago
I'm not sure, but I think C) SWIPE also offers those security measures.
upvoted 0 times
...
Gerardo
1 year ago
I agree with Buddy, IPSec provides all those security features.
upvoted 0 times
...
Buddy
1 year ago
I think the answer is A) IPSec.
upvoted 0 times
...

Save Cancel