A security administrator needs to ensure that proprietary data remains confidential while remote employees access it from off-site locations over the internet. Which of the following is the BEST solution to protect this data in transit?
Require multi-factor authentication (MFA) for all user accounts.
Install a web application firewall (WAF) in front of the corporate web servers.
Enable Transport Layer Security (TLS) on all public-facing web services.
Implement a Virtual Private Network (VPN) for remote access.
A Virtual Private Network (VPN) is the best solution as it creates an encrypted tunnel across the public internet, securing all data in transit between the remote employee and the corporate network. This ensures confidentiality and integrity regardless of the application being used. While enabling Transport Layer Security (TLS) on web services is important, it only protects web traffic (HTTP), not other protocols employees might use. Requiring multi-factor authentication (MFA) strengthens user authentication but does not encrypt the data after access is granted. A web application firewall (WAF) is designed to protect web applications from attacks like SQL injection and cross-site scripting, not to provide general-purpose encryption for data in transit.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a secure tunnel in the context of data transmission?
Open an interactive chat with Bash
What encryption protocols are typically used to secure remote connections?
Open an interactive chat with Bash
Why is encryption necessary for data in transit, especially for remote workers?