Skillset can help you prepare! Sign up for your free Skillset account and take the first steps towards your certification.
SSL can use RC4 for encryption. True or false?
True
False
It would be great to provide a reason!!! EDIT: LOL - as in what reason one could have to use RC4? It works in SSL, but why? RC4 gave us WEP. Nuff said. RC4 is the most popular stream cipher in the world. It is used to protect as many as 30 percent of SSL trafc today, probably summing up to billions of TLS connections every day.In this paper, we revisit the Invariance Weakness – a 13-year-old vulnerability of RC4 that is based on huge classes of RC4 weak keys, which was frst published in the FMS paper in 2001. We show how this vulnerability can be used to mount several partialplaintext recovery attacks on SSL-protected data when RC4 is the cipher of choice, recovering part of secrets such as session cookies, passwords, and credit card numbers. This paper will describe the Invariance Weakness in detail, explain its impacts, and recommend some mitigating actions. https://www.imperva.com/docs/HIIAttackingSSLwhenusing_RC4.pdf
Train with Skillset and pass your certification exam. Faster. Guaranteed.
Study thousands of practice questions that organized by skills and ranked by difficulty.
Create a tailored training plan based on the knowledge you already possess.
Know when you’re ready for the high-stakes exam. Have the confidence that you will pass on your first attempt.