An employee needs to transmit sensitive client data to a colleague at another branch. Out of the following methods, which is the MOST secure for preventing unauthorized access during transmission?
Send the email only when connected to a secure, trusted wireless network.
Trust the security provided by the email service provider's standard encryption protocols in place.
Place the sensitive data in a password-protected ZIP file before emailing it to the colleague.
Use digital signatures and encrypt the email using end-to-end encryption methods like PGP (Pretty Good Privacy) or S/MIME (Secure/Multipurpose Internet Mail Extensions).
End-to-end encryption methods such as PGP or S/MIME transform the message into ciphertext that only the recipient's private key can decrypt, while a digital signature confirms the sender's identity and provides non-repudiation. Sending over a trusted network or relying solely on an email provider's server-to-server TLS protects only the connection, not the message itself once it reaches the provider. A password-protected ZIP file depends on password strength and may use older, weaker ZipCrypto encryption; if the password is disclosed or cracked, the data is exposed. Therefore, digitally signing and end-to-end encrypting the email offers the highest level of confidentiality and integrity during transit.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is PGP and how does it provide security?
Open an interactive chat with Bash
How do digital signatures verify the sender's identity?
Open an interactive chat with Bash
How does S/MIME differ from PGP in email encryption?