Why is the WAP gateway a component warranting critical concern and review for the IS auditor
when auditing and testing controls enforcing message confidentiality?

A.
WAP is often configured by default settings and is thus insecure.

B.
WAP provides weak encryption for wireless traffic.

C.
WAP functions as a protocol-conversion gateway for wireless TLS to Internet SSL.

D.
WAP often interfaces critical IT systems.

Explanation:
Functioning as a protocol-conversion gateway for wireless TLS to Internet SSL, the WAP gateway
is a component warranting critical concern and review for the IS auditor when auditing and testing
controls that enforce message confidentiality.