A security assessment determines DES and 3DES are still being used on recently deployed production servers.
Which of the following did the assessment identify?
A.
Unsecure protocols B.
Default settings C.
Open permissions D.
Weak encryption.
D.
A security assessment determines DES and 3DES are still being used on recently deployed production servers.
Which of the following did the assessment identify?
A.
Unsecure protocols
B.
Default settings
C.
Open permissions
D.
Weak encryption.
D.
The security assessment identified that DES (Data Encryption Standard) and 3DES (Triple Data Encryption Standard) are still being used on recently deployed production servers.
DES is an outdated encryption standard that has been considered insecure for several years. It uses a 56-bit key, which can be brute-forced in a matter of hours or days by modern computers. This makes it vulnerable to attacks and makes it unsuitable for securing sensitive information.
3DES, on the other hand, is a stronger version of DES that uses a triple encryption process to provide better security. However, it is also considered outdated and is being phased out in favor of stronger encryption algorithms such as AES (Advanced Encryption Standard).
Therefore, the assessment identified that weak encryption is being used on the recently deployed production servers. This poses a significant security risk as it can potentially allow attackers to access sensitive information by exploiting vulnerabilities in the encryption. The use of weak encryption can also make the servers non-compliant with industry regulations and standards.
In conclusion, the assessment identified that weak encryption is being used on the recently deployed production servers, and it is recommended that the encryption algorithm is upgraded to a more secure one to improve the overall security of the servers.