CISSP PRACTICE QUESTIONS – 20200403

Effective CISSP Questions

Which of the following is the best authentication standard or protocol for the extranet integration based on SOAP?
A. LDAP
B. OIDC
C. XACML
D. SAML


Kindly be reminded that the suggested answer is for your reference only. It doesn’t matter whether you have the right or wrong answer. What really matters is your reasoning process and justifications.

My suggested answer is D. SAML.

  • LDAP (Lightweight Directory Access Protocol) is an open, vendor-neutral, industry-standard application protocol for accessing and maintaining distributed directory information services over an Internet Protocol (IP) network. It is used to get direct access to the directory. Most implementations are RPC-based. As a result, it’s not a good candidate for an extranet that connects customers, suppliers, or partners.
  • OIDC use JSON-based messages, while SOAP is XML-based.
  • XACML is used for authorization, not authentication.
  • SAML is XML-based and encapsulated in SOAP. It was common to use SAML to implement the extranet.

Reference

 

 

 

1 thought on “CISSP PRACTICE QUESTIONS – 20200403

Leave a Reply