Implementing and Operating Cisco Enterprise Network Core Technologies (ENCOR) — Question 1004

Which definition describes JWT in regard to REST API security?

Answer options

• A. an encrypted JSON token that is used for authentication
• B. an encrypted JSON token that is used for authorization
• C. an encoded JSON token that is used to securely exchange information
• D. an encoded JSON token that is used for authentication

Correct answer: C

Explanation

The correct answer is C because JWT is primarily used to securely exchange information between parties in a compact and URL-safe manner. Options A and D incorrectly focus on authentication, while B misrepresents its function related to authorization, rather than its main purpose of information exchange.