Secure and Digital Communication Methods for CEOs and CIOs | Exam CAS-003 CompTIA CASP+

Recommended Communication Method for CEOs and CIOs

Question

The Chief Executive Officers (CEOs) from two different companies are discussing the highly sensitive prospect of merging their respective companies together.

Both have invited their Chief Information Officers (CIOs) to discern how they can securely and digitally communicate, and the following criteria are collectively determined: -> Must be encrypted on the email servers and clients -> Must be OK to transmit over unsecure Internet connections Which of the following communication methods would be BEST to recommend?

Answers

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D.

D.

In this scenario, the CEOs of two companies are discussing the possibility of merging their companies, and they need to communicate securely and digitally. The CIOs of both companies have been tasked with determining the best way to securely transmit sensitive information via email over unsecured internet connections.

Based on the provided criteria, the recommended communication method should meet the following requirements:

  • Encryption on the email servers and clients: This means that the communication should be protected with encryption both when it is being sent and received.
  • OK to transmit over unsecure internet connections: This means that the communication should be able to be sent over the internet, even if the connection is not secure.

Let's evaluate each of the answer options in light of these criteria:

A. Force TLS between domains: Transport Layer Security (TLS) is a protocol used to encrypt and secure communication over the internet. "Forcing" TLS between domains means that both email servers would be required to use TLS encryption when communicating with each other. While this would meet the encryption requirement, it may not be OK to transmit over unsecured internet connections because it relies on both email servers supporting TLS.

B. Enable STARTTLS on both domains: STARTTLS is another encryption protocol that can be used to secure email communication. Enabling STARTTLS on both domains means that both email servers would support this protocol and use it to encrypt communication. This would also meet the encryption requirement, but it may not be OK to transmit over unsecured internet connections because it also relies on both email servers supporting STARTTLS.

C. Use PGP-encrypted emails: Pretty Good Privacy (PGP) is a popular encryption tool that can be used to encrypt email communication. PGP uses public-key cryptography to protect the contents of the email. This option would meet the encryption requirement and would also be OK to transmit over unsecured internet connections because it does not rely on email servers supporting any specific encryption protocol.

D. Switch both domains to utilize DNSSE: Domain Name System Security Extensions (DNSSE) is a protocol used to secure the domain name system (DNS), which is used to translate domain names into IP addresses. While DNSSE can help protect against certain types of attacks, it is not directly related to securing email communication. This option would not meet the encryption requirement.

Therefore, the best option to recommend based on the provided criteria is C. Use PGP-encrypted emails.