Which choice below most accurately describes SSL?
A.
It’s a widely used standard of securing e-mail at the Application level.
B.
It gives a user remote access to a command prompt across a secure, encrypted session.
C.
It uses two protocols, the Authentication Header and the Encapsulating Security Payload.
D.
It allows an application to have authenticated, encrypted communications across a network.
Explanation:
The Secure Socket Layer (SSL) sits between higher-level application functions and the TCP/IP stack
and provides security to applications. It includes a variety of encryption algorithms to secure
transmitted data, but the functionality must be integrated into the application. Answer “It’s a widely
used standard of securing e-mail at the Application level.” refers to the Secure/Multipurpose
Internet Mail Extension (S/MIME). Most major e-mail clients support S/MIME today. Answer “It gives
a user remote access to a command prompt across a secure, encrypted session.” describes Secure
Shell (SSH). Answer “It uses two protocols, the Authentication Header and the Encapsulating Security
Payload.” refers to IPSec. IPSec enables security to be built directly into the TCP/IP stack, without
requiring application modification. Source: Counter Hack by Ed Skoudis (Prentice Hall PTR, 2002).