If insecure protocols must be used, what should be done?

Elevate your cybersecurity career with the EC-Council Certified Ethical Hacker (CEH) v13 exam. Master essential concepts with multiple choice flashcards and detailed explanations. Achieve success in ethical hacking!

Multiple Choice

If insecure protocols must be used, what should be done?

Explanation:
When you must use insecure protocols, protecting the data in transit is essential by encrypting all transmissions. Encryption thwarts eavesdropping, tampering, and impersonation by making the content unreadable to anyone who intercepts it, and it can also provide authentication when using proper, trusted mechanisms. In practice, wrap or replace insecure protocols with secure transports: use HTTPS for web traffic, SSH instead of Telnet, and SFTP/FTPS instead of plain FTP, or apply TLS to email and other services. Relying on a firewall alone or operating unencrypted admin interfaces leaves credentials and configurations exposed, so encryption of the data channel is the critical mitigation.

When you must use insecure protocols, protecting the data in transit is essential by encrypting all transmissions. Encryption thwarts eavesdropping, tampering, and impersonation by making the content unreadable to anyone who intercepts it, and it can also provide authentication when using proper, trusted mechanisms. In practice, wrap or replace insecure protocols with secure transports: use HTTPS for web traffic, SSH instead of Telnet, and SFTP/FTPS instead of plain FTP, or apply TLS to email and other services. Relying on a firewall alone or operating unencrypted admin interfaces leaves credentials and configurations exposed, so encryption of the data channel is the critical mitigation.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy