CompTIA Security+ (SY0-501) — Question 392
A security administrator is choosing an algorithm to generate password hashes.
Which of the following would offer the BEST protection against offline brute force attacks?
Answer options
- A. MD5
- B. 3DES
- C. AES
- D. SHA-1
Correct answer: C
Explanation
AES is a strong encryption standard that offers robust security features, making it more resilient against offline brute force attacks compared to the other options. MD5 and SHA-1 are considered weak due to vulnerabilities that allow for easier cracking, while 3DES, though more secure than MD5 and SHA-1, is still not as strong as AES in contemporary security practices.