Exam 350-901 topic 1 question 145 discussion

Actual exam question from Cisco's 350-901

Question #: 145
Topic #: 1

A web application is being developed to provide online sales to a retailer. The customers will need to use their username and passwords to login into their profile and complete their order. For this reason, the application must store user passwords.
Which approach ensures that an attacker will need to crack the passwords one at a time?

A. Store the passwords by using asymmetric encryption.
B. Apply the salting technique.
C. Store the passwords by using symmetric encryption.
D. Apply the peppering technique.

Show Suggested Answer

Suggested Answer: B 🗳️

by duracell at Jan. 4, 2022, 9:53 a.m.

Comments

Submit Cancel

ferock

Highly Voted 1 year ago

Selected Answer: B

What is Salting? Salting is a concept that typically pertains to password hashing. Essentially, it’s a unique value that can be added to the end of the password to create a different hash value. This adds a layer of security to the hashing process, specifically against brute force attacks. A brute force attack is where a computer or botnet attempt every possible combination of letters and numbers until the password is found. Anyway, when salting, the additional value is referred to as a “salt.” The idea is that by adding a salt to the end of a password and then hashing it, you’ve essentially complicated the password cracking process. https://www.thesslstore.com/blog/difference-encryption-hashing-salting/

upvoted 9 times

...

duracell

Highly Voted 1 year, 4 months ago

B is correct.

upvoted 7 times

...

Teringzooi

Most Recent 7 months, 3 weeks ago

Selected Answer: B

Correct answer: B Always salting. https://www.thesslstore.com/blog/difference-encryption-hashing-salting/

upvoted 2 times

...

dsizov

1 year, 4 months ago

B is correct

upvoted 6 times

...

Exam 350-901 All Questions

View all questions & answers for the 350-901 exam