Implementing and Operating Cisco Enterprise Network Core Technologies (ENCOR) — Question 661

Which two actions are recommended as security best practices to protect REST API? (Choose two.)

Answer options

• A. Enable dual authentication of the session
• B. Use a password hash
• C. Use SSL for encryption
• D. Use TACACS+ authentication
• E. Enable out-of-band authentication

Correct answer: B, C

Explanation

Using a password hash (Option B) enhances security by storing passwords in a hashed format, making it difficult for attackers to retrieve the original passwords. Utilizing SSL for encryption (Option C) is essential for securing data in transit between clients and the API. The other options, while they may enhance security in different contexts, are not universally recommended best practices for protecting REST APIs.