Check Point Certified Security Administrator (CCSA) R80 — Question 2

Vanessa is firewall administrator in her company; her company is using Check Point firewalls on central and remote locations, which are managed centrally by
R80 Security Management Server. One central location has an installed R77.30 Gateway on Open server. Remote location is using Check Point UTM-1 570 series appliance with R71. Which encryption is used in Secure Internal Communication (SIC) between central management and firewall on each location?

Answer options

• A. On central firewall AES128 encryption is used for SIC, on Remote firewall 3DES encryption is used for SIC.
• B. On both firewalls, the same encryption is used for SIC. This is AES-GCM-256.
• C. The Firewall Administrator can choose which encryption suite will be used by SIC.
• D. On central firewall AES256 encryption is used for SIC, on Remote firewall AES128 encryption is used for SIC.

Correct answer: A

Explanation

The correct answer is A because the central firewall uses AES128 for SIC, and the remote firewall employs 3DES for SIC. Option B is incorrect as it states both firewalls use the same encryption, which is not the case. Option C is wrong because the encryption suite is predetermined and not chosen by the administrator. Option D incorrectly states the encryption types used on both firewalls.