CompTIA Security Plus Mock Test Q195

A technician wants to securely collect network device configurations and statistics through a scheduled and automated process. Which of the following should be implemented if configuration integrity is most important and a credential compromise should not allow interactive logons?

A. SNMPv3
B. TFTP
C. SSH
D. TLS

Correct Answer: A
Section: Network Security

Explanation:
SNMPv3 provides the following security features:
Message integrity – Ensures that a packet has not been tampered with in transit.
Authentication – Determines that the message is from a valid source.
Encryption – Scrambles the content of a packet to prevent it from being learned by an unauthorized source.

Incorrect Answers:
B: Trivial File Transfer Protocol (TFTP) is a simple file-exchange protocol that doesn’t require authentication.
C: Secure Shell (SSH) is a cryptographic network protocol for securing data communication.
D: Transport Layer Security (TLS) is a cryptographic protocol designed to provide communications security over a computer network.

References:
http://www.cisco.com/c/en/us/td/docs/ios-xml/ios/snmp/configuration/xe-3se/3850/snmp-xe-3se-3850-book/nm-snmp-snmpv3.html#GUID-C3D348A6-A00C-4010-B91C-
22CEEDB7BD1C
Stewart, James Michael, CompTIA Security+ Review Guide, Sybex, Indianapolis, 2014, pp. 42, 44, 50