Exam CISM topic 1 question 208 discussion

Digital signature provides both authenticity (proving the sender’s identity) and non-repudiation (ensuring the sender cannot deny having signed the data).

B. Using a hash value, it is possible to ensure the integrity of data. A digital certificate can be used to verify an identity, not the data.

Hash - to ensure data is not modified

A. Digital signature. A digital signature is a cryptographic technique that provides both authentication and integrity for data in transit. It ensures that the data has not been tampered with during transmission and that it comes from the expected sender.

data authenticity mean data not altered that means hash value

A is the correct answer. B is wrong as Hash Value is one side encryption which can't be used in Transit.

Digital Signature

A. Digital signature

The key phrase is " authenticity of data in transit?"

A. Digital signature is the MOST effective way to protect the authenticity of data in transit. A digital signature is a mathematical technique used to verify the authenticity and integrity of a message, software, or digital document. It uses public key encryption to verify the sender and ensure that the message has not been tampered with during transmission.

The difference between a hash and a digital signature is: Hashes are used to verify the message integrity only, digital signatures are used to verify message authenticity and message integrity.

Option B - Hash value maintains the integrity which is what the question is point to. All other options protect confidentiality.

The most effective way to protect the authenticity of data in transit is by using a digital signature. A digital signature is a mathematical scheme that uses a private key to ensure the authenticity of the data. It allows the recipient to verify that the data came from the sender and has not been tampered with during transmission. A digital signature provides a high level of security as it uses encryption and authentication techniques to protect the integrity and authenticity of data.

A is correct

Don't mix authenticity with authentication. In my opinion, Authenticity means in this case the data was not changed. So Hash for me is the answer.

A. Digital certificate. Using code-signing certificate the publisher will sign the data(the computed hash value for the data). This will be validated by the recipient who has the public certificate of the trusted publishers/senders. The recipient computes the hash value of the data to see if it matches the one available in the code-signed certificate. If matches, authenticity and integrity is okay

Authenticity is established by using digital signature.