CompTIA Security+ (SY0-501) — Question 310

An organization wants to conduct secure transactions of large data files. Before encrypting and exchanging the data files, the organization wants to ensure a secure exchange of keys.
Which of the following algorithms is appropriate for securing the key exchange?

Answer options

• A. DES
• B. Blowfish
• C. DSA
• D. Diffie-Hellman
• E. 3DES

Correct answer: D

Explanation

The Diffie-Hellman algorithm is specifically designed for securely exchanging cryptographic keys over a public channel, making it the correct choice. The other options, such as DES, Blowfish, and 3DES, are symmetric encryption algorithms that do not facilitate key exchange, and DSA is a digital signature algorithm, not meant for key exchange.