Palo Alto Networks Certified Network Security Engineer (PCNSE) — Question 70

What is the purpose of the firewall decryption broker?

Answer options

• A. decrypt SSL traffic and then send it as cleartext to a security chain of inspection tools.
• B. force decryption of previously unknown cipher suites
• C. reduce SSL traffic to a weaker cipher before sending it to a security chain of inspection tools.
• D. inspect traffic within IPsec tunnels

Correct answer: A

Explanation

The firewall decryption broker's primary function is to decrypt SSL traffic and forward it in cleartext to a series of security tools for inspection, making option A the correct choice. Options B and C incorrectly describe the decryption process, as forcing decryption of unknown cipher suites is not a standard function, and reducing traffic to a weaker cipher is counterproductive. Option D is unrelated, as IPsec tunnels are typically encrypted and not the focus of the decryption broker's role.