Which action would administrators take to enhance TLS security by enabling a modern protocol?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $24.99Unlock all

Master Citrix ADC13 with Citrix Gateway 1Y0-231 Test. Use flashcards and multiple choice questions with hints. Prepare thoroughly for your exam!

Multiple Choice

Which action would administrators take to enhance TLS security by enabling a modern protocol?

Explanation:
Using a modern TLS protocol version improves security by defining how keys are exchanged, which ciphers are allowed, and how data integrity is ensured. Enabling TLSv1.2 puts you on a current, well-supported protocol that offers strong ciphers (like AES-GCM) and robust hash algorithms (such as SHA-256/384), along with features like forward secrecy. This combination makes the connection much harder to compromise compared to older protocols. Enabling the RC4 cipher suite would actually weaken security because RC4 has known biases and vulnerabilities that attackers can exploit. Creating a SHA-1 key doesn’t upgrade the protocol or its security level—SHA-1 is considered weak for modern TLS signatures. SSLv3 is outdated and vulnerable to several attacks, so retiring or disabling it improves security, but the action described as adopting a modern protocol is specifically enabling TLSv1.2.

Using a modern TLS protocol version improves security by defining how keys are exchanged, which ciphers are allowed, and how data integrity is ensured. Enabling TLSv1.2 puts you on a current, well-supported protocol that offers strong ciphers (like AES-GCM) and robust hash algorithms (such as SHA-256/384), along with features like forward secrecy. This combination makes the connection much harder to compromise compared to older protocols.

Enabling the RC4 cipher suite would actually weaken security because RC4 has known biases and vulnerabilities that attackers can exploit. Creating a SHA-1 key doesn’t upgrade the protocol or its security level—SHA-1 is considered weak for modern TLS signatures. SSLv3 is outdated and vulnerable to several attacks, so retiring or disabling it improves security, but the action described as adopting a modern protocol is specifically enabling TLSv1.2.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy