1. Home
  2. Discussions
  3. Checkpoint
  4. Checkpoint Other Certification
  5. 156-110 Discussions
  6. 156-110 Exam Topic 3 Question 25 Discussion

Checkpoint Check Point Certified Security Principles Associate (CCSPA) 156-110 Question # 25 Topic 3 Discussion

 Checkpoint Discussions      Browse All Questions      Go to Exam Detail      Get Premium Access
 Previous
Next  

Checkpoint Check Point Certified Security Principles Associate (CCSPA) 156-110 Question # 25 Topic 3 Discussion

156-110 Exam Topic 3 Question 25 Discussion:
Question #: 25
Topic #: 3

You are considering purchasing a VPN solution to protect your organization's information assets. The solution you are reviewing uses RFC-compliant and open-standards encryption schemes. The vendor has submitted the system to a variety of recognized testing authorities. The vendor does not make the source code available to testing authorities. Does this solution adhere to the secure design principle of open design?
A.

No, because the software vendor could have changed the code after testing, which is not verifiable.

B.

No, because the software vendor submitted the software to testing authorities only, and did not make the software available to the public for testing.

C.

Yes, because the methods were tested by recognized testing authorities, and the source code is protected from vandalism.

D.

Yes, because the methods are open, and the system does not rely on the secrecy of its internal mechanisms to provide protection.

E.

No, because if a software vendor refuses to reveal the source code for a product, it cannot comply with the open-design principle.

Get Premium 156-110 Questions
Actual exam question for Checkpoint 156-110 exam by Xander5795 at Aug 6, 2025, 6:17:26 AM

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Submit
 Previous
Next