Rather than encrypting the data itself, you can create a one-way hash of the data and then use your private key to encrypt the hash. The encrypted hash, along with other information like the hashing algorithm, is known as a digital signature.
To verify the authenticity of a digitally signed document, you need 1. the digital signature itself (which is the encrypted hash). 2. The digital hash of the document, freshly calculated by the verifier. 3. The sender's public key (not the recipient's) to decrypt the digital signature back into the original hash.
This is an interesting question as it is checking if we understand the difference between authenticity and integrity. Document Authenticity requires us to validate if it was signed by the person; therefore we must use their public key to validate their private key (Answer=C).
A "digital hash of the signed document" refers to a unique string of characters generated by a cryptographic hash function, which acts as a digital fingerprint of the signed document, ensuring that the document hasn't been altered since it was signed; essentially allowing for easy verification of its integrity.
you need to use the "sender public key" to validate the authenticity. If I'm sending a message to you, I will encrypt it with "my private key" then you can use "my public key" to validate that it's me the sender.
C. and I agree with BoyBastos. I addition to his comments, once the authenticity is verified using Sender's public key extracted from his/her/they public certificate (signed by CA), Receiver will then calculate the Hash of the information sent by Sender & match the generated Hash value with it. If the Hash matches, if proves Non-Repudiation for Sender, meaning that the sender now cannot deny what was sent by him.
In summary, Authenticity is checked by using sender's Public Certificate and Non-Repudiation of Sender by calculating and comparing Hash value of the information.
Cheers!
Oh, I stand corrected by the way and Option C is "Recipient (Receiver) Public Key". So B is correct. The question I assume is not put in the right way. Instead of Authenticity, it could have mentioned Non-Repudiation :)
B. Digital hash of the signed document
The digital hash of the signed document is used in the process of verifying the authenticity of a digitally signed document. When a document is digitally signed, a hash of the document is created, and that hash is encrypted with the sender's private key to create the digital signature. To verify the authenticity of the document, the recipient uses the sender's public key to decrypt the signature and obtain the hash. Then, the recipient hashes the received document and compares it to the decrypted hash. If they match, it verifies the document's authenticity.
C. Recipient's public key
To verify the authenticity of a digitally signed document, the recipient uses the sender's public key. The sender signs the document using their private key, and the recipient can then verify the signature using the corresponding public key. If the signature is valid, it confirms the authenticity of the document and ensures that it was indeed signed by the holder of the private key. The other options are not used for verifying the authenticity of a digitally signed document in the context of public key infrastructure (PKI).
B. "The hash value is unique to the document that is hashed or encrypted and any changes in that document will lead to a changed hash value, this characteristic facilitates the validation of the data by the recipients"
https://hashstudioz.com/blog/how-does-a-digital-signature-help-in-validating-a-documents-authenticity/
The correct answer is D. Sender's private key.
To verify the authenticity of a digitally signed document, the recipient must have the sender's public key and the signed document itself. The recipient then uses the public key to decrypt the digital signature on the document, which was created using the sender's private key.
The digital signature is created by encrypting a hash of the document using the sender's private key. When the recipient decrypts the signature using the sender's public key, they obtain the hash of the original document. They can then compute the hash of the received document themselves and compare it to the decrypted hash. If the two hashes match, then the document is considered authentic and has not been modified in transit.
This section is not available anymore. Please use the main Exam Page.CISSP Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Rollizo
Highly Voted 2 years, 6 months agojackdryan
1 year, 11 months agoBigITGuy
Most Recent 2 weeks, 3 days agoayadmawla
2 months, 3 weeks agoseconazure
1 month, 3 weeks agoJayelv
3 months, 2 weeks agoEZXS
8 months, 2 weeks agoEZXS
8 months, 2 weeks agoklarak
11 months, 2 weeks agoSoleandheel
1 year, 4 months agothanhlb
1 year, 5 months agoBoyBastos
1 year, 7 months agoBoyBastos
1 year, 7 months agoHughJassole
1 year, 9 months agoTygrond87
1 year, 11 months agofranbarpro
2 years, 5 months agoNickname53796
2 years, 6 months agoNickname53796
2 years, 6 months agoJamati
2 years, 5 months ago