Certified Information Systems Auditor (CISA) — Question 1341

When implementing Internet Protocol security (IPsec) architecture, the servers involved in application delivery:

Answer options

• A. channel access only through the public-facing firewall.
• B. channel access through authentication.
• C. communicate via Transport Layer Security (TLS).
• D. block authorized users from unauthorized activities.

Correct answer: B

Explanation

The correct answer is B because authentication is crucial in IPsec to ensure that only authorized users can access the network. Option A is incorrect as it suggests limiting access only through firewalls, which does not address the need for authentication. Option C is wrong since TLS is a different protocol and not directly related to the IPsec architecture. Option D is misleading as it implies a focus on blocking rather than properly authenticating users.