Encryption and Secure Connectivity Questions

Addresses network security and secure communication methods used to protect data in transit and to connect systems safely. Topics include VPN architectures and use cases such as site to site and remote access, zero trust network access, and software defined wide area networking. Candidates should understand core encryption protocols and transports including TLS and SSL, IPsec concepts and modes, WireGuard basics, mutual TLS, key management and certificate authorities, and certificate lifecycle. Also cover encryption at rest versus in transit, performance and latency trade offs, when to use VPNs versus application layer security, and operational considerations such as throughput, monitoring, and maintenance of secure tunnels.