Help me
Identify correct statements about security strategies at the message level?
You had to select 2 option(s)
Each porting of a compound message is secured.
Message attachments are secured without the need for a dedicated API.
Security is dependent on the application environment or the transport protocol.
SSL is required to ensure authenticity, integraity and confidentiallty.
Messages are secured during transport and after arrival at their destination.
How right answers relate with message level?
1) SSL is transport level, why is right answer? it's transport level security, not message level
2) Message level security is end-to-end security, how is it depends on the application environment or the transport protocol???
About Question enthuware.ocmjea.v6.2.83 :
-
- Posts: 9
- Joined: Mon Mar 12, 2018 1:17 pm
- Contact:
-
- Site Admin
- Posts: 10079
- Joined: Fri Sep 10, 2010 9:26 pm
- Contact:
Re: About Question enthuware.ocmjea.v6.2.83 :
You are right. Correct options should be 2 and 5.
1. Each portion of a compound message is secured.
This is not true because it is possible to secure only parts of a message.
2. Message attachments are secured without the need for a dedicated API.
This is true because message attachments can be secured the same way other parts of the message are secured. They don't require to be treated in a separate way.
3. Security is dependent on the application environment or the transport protocol.
Messages are secured by the application itself using some API such as WSS. Thus, it is not dependent on the environment or the transport protocol.
4. SSL is required to ensure authenticity, integrity and confidentiallty.
This is not required because the message is already encrypted by the application. The encrypted message can also include security tokens and/or authentication information.
5. Messages are secured during transport and after arrival at their destination.
This is true. Since messages are encrypted by the sender application and decrypted by the receiver application, they are secured during transport and after arrival at their destination.
This has been fixed.
thank you for your feedback!
1. Each portion of a compound message is secured.
This is not true because it is possible to secure only parts of a message.
2. Message attachments are secured without the need for a dedicated API.
This is true because message attachments can be secured the same way other parts of the message are secured. They don't require to be treated in a separate way.
3. Security is dependent on the application environment or the transport protocol.
Messages are secured by the application itself using some API such as WSS. Thus, it is not dependent on the environment or the transport protocol.
4. SSL is required to ensure authenticity, integrity and confidentiallty.
This is not required because the message is already encrypted by the application. The encrypted message can also include security tokens and/or authentication information.
5. Messages are secured during transport and after arrival at their destination.
This is true. Since messages are encrypted by the sender application and decrypted by the receiver application, they are secured during transport and after arrival at their destination.
This has been fixed.
thank you for your feedback!
If you like our products and services, please help us by posting your review here.
-
- Posts: 9
- Joined: Mon Mar 12, 2018 1:17 pm
- Contact:
Who is online
Users browsing this forum: No registered users and 8 guests