CompTIA Security+ (SY0-501) — Question 600

Which of the following BEST describes the concept of perfect forward secrecy?

Answer options

• A. Using quantum random number generation to make decryption effectively impossible
• B. Preventing cryptographic reuse so a compromise of one operation does not affect other operations
• C. Implementing elliptic curve cryptographic algorithms with true random numbers
• D. The use of NDAs and policy controls to prevent disclosure of company secrets

Correct answer: B

Explanation

The correct answer, B, highlights the principle of perfect forward secrecy, which ensures that the compromise of one session key does not compromise past or future session keys. Options A, C, and D do not relate to forward secrecy; they focus on other cryptographic techniques or security measures that do not address the issue of session key compromise.