HOTSPOT - For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point. Hot Area:
Suggested Answer:
Box 1: Yes - A certificate is required that provides a private and a public key.
Box 2: Yes - The public key is used to validate the private key that is associated with a digital signature.
Box 3: Yes - The private key, or rather the password to the private key, validates the identity of the signer. Reference: https://support.microsoft.com/en-us/office/obtain-a-digital-certificate-and-create-a-digital-signature-e3d9d813-3305-4164-a820-2e063d86e512 https://docs.microsoft.com/en-us/dynamics365/fin-ops-core/fin-ops/organization-administration/electronic-signature-overview
Shouldn't it be Y,Y,N ? As the private key is only used (and owned) by the signer to sign the document, and the associated public key is used to verify the authenticity.
Yes. Digitally signing a document involves using the signer’s private key to create the digital signature.
Yes. The public key of the signer is used to verify the digital signature and ensure the document’s authenticity.
No. The private key is used for signing, not for verifying the signature. Verification uses the public key.
For signature you use assymetric encryption.( https://learn.microsoft.com/en-us/training/modules/describe-security-concepts-methodologies/5-describe-encryption-hashing )
The sender's private key encrypts the data -- this is the digital signature -- and the receiver uses the public key to decrypt it and verify it matches the attachment. The public key and private key in digital signatures are mathematically related but cannot be generated from each other. ( https://www.techtarget.com/searchsecurity/answer/Which-private-keys-and-public-keys-can-create-a-digital-signature#:~:text=The%20sender's%20private%20key%20encrypts,be%20generated%20from%20each%20other. )
So with this information the anwsers will be:
Q1 Yes, private key is used for digital signature.
Q2 Yes, authenticity for the signature requires a public key
Q3 No, this is for encypting the data.
digitally signing a document requiring a private key is correct. However, the second statement is incorrect. Verifying the authenticity of a digitally signed document requires the public key of the signer, not the private key.
When a document is digitally signed, the signer uses their private key to create a unique signature for the document. This signature is then attached to the document. To verify the authenticity of the signed document, the recipient uses the signer's public key, which is openly shared. The public key allows the recipient to confirm that the signature was indeed created with the signer's private key, thus verifying the document's authenticity and ensuring that it has not been tampered with.
I know and understand why for the exam the answer is YYN, but for discussion sake can't you theoretically sign something with someone's public key so that only the intended recipient can read it? So rather than authenticity you are focusing on confidentiality.
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
ThomasDehottay
Highly Voted 2 years, 11 months agoRavikant84
2 years, 3 months agoTJ001
2 years, 8 months agoAlexado
2 years, 8 months agoTokiki
2 years, 6 months agoSm3lly_Cat
Most Recent 4 months, 1 week ago19PetLew
5 months, 2 weeks agoSR1991
9 months, 3 weeks agojg_85
10 months agoxRiot007
1 year agoRahulX
1 year, 1 month agoKopter
1 year, 3 months agojaaake
1 year, 3 months agoAKATTHULA
1 year, 4 months agoNitinRajNigam
1 year, 4 months agoMisty39
1 year, 6 months agoPady1234
1 year, 6 months agoAsirpa
1 year, 6 months agokaheri
1 year, 7 months agoCololand
1 year, 8 months agoEduardo_S
1 year, 8 months ago