312-50V10 · Question #17
Bob, your senior colleague, has sent you a mail regarding aa deal with one of the clients. You are requested to accept the offer and you oblige. After 2 days, Bob denies that he had ever sent a mail.
The correct answer is C. Non-Repudiation. Non-repudiation ensures a sender cannot deny having performed an action by providing cryptographic proof of origin.
Question
Bob, your senior colleague, has sent you a mail regarding aa deal with one of the clients. You are requested to accept the offer and you oblige. After 2 days, Bob denies that he had ever sent a mail. What do you want to "know" to prove yourself that it was Bob who had send a mail?
Options
- AConfidentiality
- BIntegrity
- CNon-Repudiation
- DAuthentication
How the community answered
(41 responses)- B2% (1)
- C95% (39)
- D2% (1)
Why each option
Non-repudiation ensures a sender cannot deny having performed an action by providing cryptographic proof of origin.
Confidentiality ensures data is accessible only to authorized parties but does not create proof identifying who sent or originated the data.
Integrity ensures data has not been altered in transit but does not address whether the original sender can later deny having sent the message.
Non-repudiation is the security property that prevents a party from denying a previously performed action. In email, digital signatures provide non-repudiation by binding the message to the sender's private key, creating cryptographic proof that only the key holder could have authored the message - making it impossible for Bob to credibly deny sending it.
Authentication verifies the identity of a party at the time of access but does not create a persistent, undeniable record that prevents later denial of a completed action.
Concept tested: Non-repudiation via digital signatures
Source: https://csrc.nist.gov/glossary/term/non_repudiation
Topics
Community Discussion
No community discussion yet for this question.