CompTIA Security+ (SY0-501) — Question 279

A systems administrator has implemented multiple websites using host headers on the same server. The server hosts two websites that require encryption and other websites where encryption is optional. Which of the following should the administrator implement to encrypt web traffic for the required websites?

Answer options

• A. Extended domain validation
• B. TLS host certificate
• C. OCSP stapling
• D. Wildcard certificate

Correct answer: B

Explanation

The correct answer is B, as a TLS host certificate is specifically designed to provide encryption for individual websites. Option A, Extended domain validation, pertains to the level of validation for the certificate but does not directly address encryption. Option C, OCSP stapling, is used for checking certificate revocation and does not encrypt traffic. Option D, a Wildcard certificate, can secure multiple subdomains but is not specifically aimed at sites requiring encryption in this scenario.