Certified Ethical Hacker test | TrustEd Institute

4:59

Stop

CEH - Cryptography - Email Encryption

Expert

1/5

A healthcare organization has experienced a breach where patient information was intercepted during email transmission. The CISO wants to implement an email encryption solution that provides both confidentiality and authenticates the sender's identity. The solution must be relatively easy to deploy and manage internally, with minimal reliance on third-party services. Which approach should the security team recommend?

Deploy PGP encryption with a web-based key management portal that requires recipients to register before accessing encrypted messages

Set up a proprietary encrypted email gateway that automatically encrypts all outgoing messages containing patient information based on content analysis

Implement S/MIME with the organization's existing PKI infrastructure for email signing and encryption

Use TLS to encrypt email communications and implement DKIM for sender authentication, as this combination provides end-to-end security