CCDE: Cisco Certified Design Expert (Practical) — Question 115

According to the CIA triad principles for network security design, which principle should be priority for a Zero Trust network?

Answer options

• A. requirement for data-in-motion encryption and 2FA authentication
• B. categorization of systems, data, and enterprise BYOD assets that are connected to network zones based on individual privacy needs
• C. ensuring that authorized users have high-availability system access from defined zones to defined systems or zones
• D. requirement for data-at-rest encryption for user identification within the VPN termination hardware

Correct answer: A

Explanation

The correct answer, A, emphasizes the importance of securing data as it travels over the network, which is crucial in a Zero Trust model where trust is never assumed. Options B, C, and D focus on categorization, access, and data-at-rest encryption, which are important but do not prioritize the real-time protection of data in transit, which is critical in a Zero Trust architecture.