FORWARD SECRECY in TLS means
Adata is encrypted faster than before
Bthe order of certificates is preserved
Ccompromise of long-term key keeps past traffic safe
Dthe server forwards traffic to a backup
Answer & Solution
Correct answer: C. compromise of long-term key keeps past traffic safe
1. FORWARD SECRECY (also: 'Perfect Forward Secrecy'): a property where compromising the LONG-TERM key does NOT reveal past session data.
2. HOW: TLS handshakes that use EPHEMERAL Diffie-Hellman (ECDHE) generate a FRESH key per session. The session key isn't stored anywhere after the session ends.
3. CONTRAST with older RSA key exchange: the session key was encrypted with the server's long-term public key. If the private key leaks years later, all past sessions can be decrypted.
4. TLS 1.3 REQUIRES forward secrecy — all key exchanges use ECDHE.
5. Defends against: state-level adversaries recording today's traffic to decrypt years later.
_Source: Boneh & Shoup, §21.4 (Forward secrecy in TLS) + RFC 8446._
Related questions
RSA encryption with PKCS#1 v1.5 padding is now consideredA SALT in password hashing isA CERTIFICATE AUTHORITY (CA) in PKI does what?TLS (Transport Layer Security) uses a HYBRID encryption scheme. Why?An HMAC (Hash-based Message Authentication Code) providesWhich block cipher mode is INSECURE and should NEVER be used because it leaks PATTERNS in Which hash algorithm is considered DEPRECATED / WEAK and should NOT be used for new applicDIFFIE-HELLMAN key exchange allows two parties to