A company is executing a strategy to encrypt and sign all proprietary data in transit. The company recently deployed PKI services to support this strategy.
Which of the following protocols supports the strategy and employs certificates generated by the PKI? (Choose three.)
A. S/MIME
B. TLS
C. SFTP
D. SAML
E. SIP
F. IPSec
G. Kerberos
FTP doesnt encrypt the data in transit but SFTP does since it uses TLS.
Answer: ABF
https://flylib.com/books/en/4.426.1.40/1/
Correction: ABF
[note: only data in transit]
ABC – “To encrypt and sign all proprietary DATA IN TRANSIT” and “employs certificates generated by the PKI”
A. S/MIME yes – S/MIME uses PKI to provide authentication and encryption of email for data in transit.
B. TLS yes – TLS has several encryption and encoding standards, some support PKI for data in transit.
C. SFTP no – for authentication only – not for data in transit
D. SAML no – not data in transit
E. SIP no – not data in transit
F. IPSec yes – IPsec MAY use PKI – may also use DES or AES – to encrypt data in transit
G. Kerberos no – no PKI