Thursday, September 22, 2016

Downgrade Attack and Security+

Can you answer the sample Security+ practice test question that we recently added to the online test banks?

Q. A web server has the newest TLS cryptographic protocol suite installed. However, you recently discovered it is susceptible to downgrade attacks. What should be done to ensure that systems use the MOST secure connections by default?

A. Replace the existing certificate with a new one.

B. Implement OCSP.

C. Reconfigure the cipher suite order.

D. Rekey the existing certificate.

Do you know the correct answer? More, do you know why the correct answer is correct and the incorrect answers are incorrect? Check out the answer and explanation here.

This post also includes a link you can use to check out servers in your organization. What do they get?