SNCF — Securing Networks with Firepower — Question 201

A software development company hosts the website https://dev.company.com for contractors to share code for projects they are working on with internal developers. The web server is on premises and is protected by a Cisco Secure Firewall Threat Defense appliance. The network administrator is worried about someone trying to transmit infected files to internal users via this site. Which type of policy must be associated with an access control policy to enable Cisco Secure Firewall Malware Defense to detect and block malware?

Answer options

• A. SSL policy
• B. file policy
• C. network discovery policy
• D. prefilter policy

Correct answer: A

Explanation

The correct answer is A, as an SSL policy is necessary for inspecting encrypted traffic to detect and block malware effectively. The other options, such as file policy, network discovery policy, and prefilter policy, do not specifically relate to the ability to analyze SSL-encrypted communications for malware detection.