Certified Information Systems Security Professional (CISSP) — Question 143

A security architect is implementing an authentication system for a distributed network of servers. This network will be accessed by users on workstations that cannot trust the identity of the user. Which solution should the security architect use to have the users trust one another?

Answer options

• A. One-way authentication
• B. Kerberos
• C. Mutual authentication
• D. Single session software tokens

Correct answer: C

Explanation

The correct answer is C, Mutual authentication, as it allows both parties to verify each other's identities, fostering trust in a distributed environment. One-way authentication (A) only validates one side, leaving the other unverified, while Kerberos (B) is a specific protocol that may not apply universally here. Single session software tokens (D) do not establish mutual trust between users.