ExamTopics Logo
Mail Us[email protected]
Menu
Isc Discussions
exam questions

Exam SSCP All Questions

View all questions & answers for the SSCP exam
Go to Exam

Exam SSCP topic 1 question 144 discussion

Actual exam question from ISC's SSCP
Question #: 144
Topic #: 1
[All SSCP Questions]

Which of the following statements pertaining to Kerberos is TRUE?

  • A. Kerberos does not address availability
  • B. Kerberos does not address integrity
  • C. Kerberos does not make use of Symmetric Keys
  • D. Kerberos cannot address confidentiality of information
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
The question was asking for a TRUE statement and the only correct statement is "Kerberos does not address availability".
Kerberos addresses the confidentiality and integrity of information. It does not directly address availability.
Source: KRUTZ, Ronald L. & VINES, Russel D., The CISSP Prep Guide: Mastering the Ten Domains of Computer Security, John Wiley & Sons, 2001, Chapter 2:
Access control systems (page 42).
by Rixster at Aug. 30, 2023, 3:18 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
nanson
4 months, 4 weeks ago
The statement that is TRUE regarding Kerberos is: C. Kerberos does not make use of Symmetric Keys Kerberos primarily uses symmetric key cryptography for secure communication between entities. It employs a trusted third-party Key Distribution Center (KDC) to issue session keys to authenticated entities for secure communication, making extensive use of symmetric keys for encryption and authentication purposes.
upvoted 1 times
...
Rixster
7 months, 3 weeks ago
Selected Answer: B
The statement that is TRUE is: B. Kerberos does not address integrity. While Kerberos primarily focuses on authentication and secure key distribution, it does not inherently address data integrity. Data integrity ensures that data remains accurate and unaltered during transmission or storage. While Kerberos establishes secure communication channels for authentication purposes, it does not provide mechanisms to guarantee the integrity of the data being transmitted or stored. The other options: A. Kerberos does address availability by providing a way for authorized users to access resources and services. C. Kerberos extensively uses Symmetric Keys for secure communication between parties. D. Kerberos does address confidentiality by ensuring that authentication information and tickets are encrypted to prevent eavesdropping.
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago