A security analyst is recommending a symmetric encryption algorithm for a new application that requires both confidentiality and authentication. Which algorithm and mode combination should they select?
Trap 1: 3DES-CBC
3DES is legacy and CBC mode does not provide authentication.
Trap 2: AES-ECB
ECB mode is not recommended due to pattern leakage and does not provide authentication.
Trap 3: RC4
RC4 is a stream cipher with known vulnerabilities and no authentication.
- A
3DES-CBC
Why wrong: 3DES is legacy and CBC mode does not provide authentication.
- B
AES-ECB
Why wrong: ECB mode is not recommended due to pattern leakage and does not provide authentication.
- C
RC4
Why wrong: RC4 is a stream cipher with known vulnerabilities and no authentication.
- D
AES-GCM
GCM mode combines encryption and authentication, making it ideal for this requirement.