Computer Hacking Forensic Investigator (CHFI) Practice Exam

The correct answer is UDP because it is a fundamental protocol at the transport layer of the TCP/IP model. UDP, or User Datagram Protocol, is responsible for facilitating communication between applications by providing a method for sending messages, called datagrams, across an IP network. It is connectionless and does not guarantee delivery, order, or error checking, making it suitable for applications that require speed over reliability, such as video streaming and online gaming.

The other options operate at different layers of the TCP/IP model. HTTP (Hypertext Transfer Protocol) functions at the application layer, providing a protocol for transferring web pages and data between clients and servers. FTP (File Transfer Protocol) also operates at the application layer, serving a specific purpose for transferring files between systems over a network. SNMP (Simple Network Management Protocol) is used for managing and monitoring network devices and also resides at the application layer.

Thus, the distinction lies in the fact that UDP is specifically designed for the transport layer, directly managing the transmission of data between devices, while the other options focus on application-level functionalities.