A company was recently audited by a third party.
The audit revealed the company's network devices were transferring files in the clear.
Which of the following protocols should the company use to transfer files?
Click on the arrows to vote for the correct answer
A. B. C. D.C.
The audit revealed that the company's network devices were transferring files in the clear, which means the files were being transmitted without any encryption or protection, making them vulnerable to interception by attackers. To secure the file transfer process, the company should use an encrypted protocol that provides data confidentiality, integrity, and authentication.
Out of the given options, the following protocols provide encryption and secure file transfer:
A. HTTPS (Hypertext Transfer Protocol Secure): HTTPS is a secure version of HTTP that uses Secure Sockets Layer/Transport Layer Security (SSL/TLS) encryption to secure the communication between the client and server. It is commonly used to transfer web pages, forms, and other data securely over the internet. However, it is not specifically designed for file transfers.
B. LDAPS (Lightweight Directory Access Protocol Secure): LDAPS is an encrypted version of LDAP that uses SSL/TLS encryption to secure the communication between LDAP clients and servers. It is commonly used for accessing directory services and can be used for secure file transfers as well.
C. SCP (Secure Copy): SCP is a secure file transfer protocol that uses Secure Shell (SSH) encryption to protect the files during transfer. SCP is widely used for transferring files securely between Unix/Linux systems.
D. SNMPv3 (Simple Network Management Protocol version 3): SNMPv3 is a secure version of SNMP that provides encryption, authentication, and data integrity to protect network devices from unauthorized access and control. However, it is not designed for file transfers and is mostly used for network management.
Therefore, out of the given options, the best protocol for secure file transfer is SCP, as it is specifically designed for file transfers and uses strong encryption to protect the files during transfer. LDAPS is also a viable option, but it is more commonly used for directory access and may require additional setup and configuration. HTTPS can also be used for secure file transfers, but it is not specifically designed for this purpose. SNMPv3 is not suitable for file transfers as it is primarily used for network management.