Certified Ethical Hacker (CEH v13) — Question 131

You are the chief security officer at AlphaTech, a tech company that specializes in data storage solutions. Your company is developing a new cloud storage platform where users can store their personal files. To ensure data security, the development team is proposing to use symmetric encryption for data at rest. However, they are unsure of how to securely manage and distribute the symmetric keys to users. Which of the following strategies would you recommend to them?

Answer options

• A. Use hash functions to distribute the keys.
• B. Use HTTPS protocol for secure key transfer.
• C. Use digital signatures to encrypt the symmetric keys.
• D. Implement the Diffie-Hellman protocol for secure key exchange.

Correct answer: D

Explanation

The correct answer is D, as the Diffie-Hellman protocol enables two parties to securely exchange keys over an unsecured channel, making it ideal for symmetric key distribution. Answer A is incorrect because hash functions are not suitable for key distribution; they are used for integrity verification. Answer B, while important for secure transfer, does not address key management directly. Answer C is misleading; digital signatures are used for authentication rather than encrypting keys.