Certified Information Systems Security Professional (CISSP) — Question 217

While reviewing a web application-to-application connection, a security professional finds the use of Representational State Transfer (REST) application programming interfaces (API) and identifies it as secure. Which one of the following connection Uniform Resource Locators (URL) applies to this scenario?

Answer options

• A. https://url.com/Resources//action?apiKey=a399ikjiuynj
• B. http://url.com/SecureTLS//action
• C. http://url.com/Resources//action?apiKey=a399ikjiuynj
• D. https://url.com/Resources//action

Correct answer: D

Explanation

The correct answer is D because it uses HTTPS, which provides a secure encrypted connection. Options A and C use HTTP, which is not secure for transmitting sensitive data, and option B suggests a connection that is not secured by HTTPS, making it less secure than option D.