Understanding Cisco Cybersecurity Operations Fundamentals (CBROPS) — Question 246

What is the impact of encryption on data visibility?

Answer options

• A. TLS 1.3 traffic cannot be decrypted and monitored.
• B. Traffic decryption causes high CPU load on monitoring systems.
• C. Traffic decryption is needed for deep inspection of SSL traffic via NGFW.
• D. IPsec encryption of traffic is vulnerable to man-in-the-middle attacks.

Correct answer: A

Explanation

The correct answer is A because TLS 1.3 uses strong encryption methods that prevent decryption and monitoring of the traffic, thus maintaining data privacy. Option B is incorrect as while decryption can be resource-intensive, it does not negate the basic principle of encryption. Option C is also wrong because while deep inspection requires decryption, it does not relate to visibility of encrypted data itself. Option D is misleading since IPsec is designed to be secure and is not inherently vulnerable to man-in-the-middle attacks if properly implemented.