CompTIA Security Plus Mock Test Q1007

Users need to exchange a shared secret to begin communicating securely. Which of the following is another name for this symmetric key?

A. Session Key
B. Public Key
C. Private Key
D. Digital Signature

Correct Answer: C
Section: Cryptography

Symmetric algorithms require both ends of an encrypted message to have the same key and processing algorithms. Symmetric algorithms generate a secret key that must be
protected. A symmetric key, sometimes referred to as a secret key or private key, is a key that isn’t disclosed to people who aren’t authorized to use the encryption system.

Incorrect Answers:
A: Session keys are encryption keys used for a communications session. Typically, session keys are randomly selected (or generated) and then used only for one session. Session
keys are often symmetric keys, but asymmetric session keys can be used as well.
B: The shared secret key is not public.
D: A digital signature is use to protect transmitted data, not for exchange a secret key.

Dulaney, Emmett and Chuck Eastton, CompTIA Security+ Study Guide, 6th Edition, Sybex, Indianapolis, 2014, pp. 251, 261