Understanding Cisco Cybersecurity Operations Fundamentals (CBROPS) — Question 80

An engineer needs to configure network systems to detect command and control communications by decrypting ingress and egress perimeter traffic and allowing network security devices to detect malicious outbound communications Which technology should be used to accomplish the task?

Answer options

• A. static IP addresses
• B. cipher suite
• C. digital certificates
• D. signatures

Correct answer: C

Explanation

Digital certificates are essential for establishing secure connections and enabling decryption of traffic, which allows for the detection of malicious communications. Static IP addresses do not provide any encryption or decryption capabilities, while cipher suites refer to the algorithms used for encryption rather than the technology for detecting command and control traffic. Signatures are used for identifying known threats but do not directly handle the decryption of traffic.