CISSP Question of the Day – 8-23-2016

Getting You Prepped for the CISSP Exam ...One Question at a Time!

Today’s CISSP question topic: Email Security

Using S/MIME, Colin, an employee of the Paper Street Soap Company, sends an encrypted email (with an attachment) to Nick, an employee at WebbWeavers, Inc. After traversing the Internet the message arrives at the front-end email gateway for WebbWeaver, Inc. The gateway needs to scan the email and its attachment for anything malicious. To what extent will the mail server be able to scan the message?

  1. The mail server will not be able to scan the message nor the attachment.
  2. The mail server will be able to scan the message and the attachment.
  3. The body of the message can be scanned but the attachment cannot.
  4. The body and the attachment can only be scanned after being decrypted by the front-end mail server.
  5. The entire message can be scanned even while encrypted.
  6. The mail server must get the decryption key from the receiving station in order to scan the message.

Check Your Answer

  1. The mail server will not be able to scan the message nor the attachment.

Explanation:The keys used to encrypt and decrypt the message are stored on the client computers. The front-end mail server does not have the ability to access these keys and cannot decrypt the message as a result.

Co-workers, friends or colleagues studying for the CISSP exam, too? Share this question with them! Click an icon below to share to your preferred social media platform!
Posted in:
About the Author

Colin Weaver

Colin Weaver is co-owner and lead instructor at ITdojo, Inc., a network security and information assurance training center and consulting firm located in Virginia Beach, VA. His passion for technology, networks, and security has led him to become enthralled with the idea of IPv6 and its implementation. In this blog he will share with you glimpses of what he has learned and a hint at what you’ll learn in his classes.