CISSP – Information Systems Security Architecture Professional (ISSAP) — Question 6

Sam is creating an e-commerce site. He wants a simple security solution that does not require each customer to have an individual key. Which of the following encryption methods will he use?

Answer options

Correct answer: B

Explanation

Symmetric encryption is ideal for this scenario because it uses a single key for both encryption and decryption, making it simpler for multiple users without needing individual keys. In contrast, asymmetric encryption requires a pair of keys, which complicates the process for each customer. S/MIME and PGP are specific protocols that also rely on key management, making them less suitable for Sam's needs.