[AMERICANDREAM]

Which of the following statements is correct concerning the security of messages in an electronic data interchange (EDI) system?

A. When the confidentiality of data is the primary risk, message authentication is the preferred control rather than encryption.

B. Encryption performed by physically secure hardware devices is more secure than encryption performed by software.

C. Message authentication in EDI systems performs the same function as segregation of duties in other information systems.

D. Security at the transaction phase in EDI systems is not necessary because problems at that level will usually be identified by the service provider.

Answer (B) is correct. Can somebody please explain why B is the best answer here? How is hardware more fit in this situation than software? Thanks

[Mike]

It is because software is more accessible from outside. And hardware encryption is faster and also may perform more complex algorithms.

[Author]

Replies