nerdexam
EC-Council

312-50V9 · Question #154

For messages sent through an insecure channel, a properly implemented digital signature gives the receiver reason to believe the message was sent by the claimed sender. While using a digital signature

The correct answer is D. Sender's private key. In a digital signature scheme, the sender encrypts the message digest using their own private key, allowing any recipient to verify authenticity by decrypting with the sender's public key.

Cryptography

Question

For messages sent through an insecure channel, a properly implemented digital signature gives the receiver reason to believe the message was sent by the claimed sender. While using a digital signature, the message digest is encrypted with which key?

Options

  • ASender's public key
  • BReceiver's private key
  • CReceiver's public key
  • DSender's private key

How the community answered

(55 responses)
  • A
    4% (2)
  • B
    2% (1)
  • C
    7% (4)
  • D
    87% (48)

Why each option

In a digital signature scheme, the sender encrypts the message digest using their own private key, allowing any recipient to verify authenticity by decrypting with the sender's public key.

ASender's public key

Encrypting the digest with the sender's public key would be cryptographically useless for authentication because anyone possesses the public key and could therefore forge the signature.

BReceiver's private key

The receiver's private key is used for decrypting messages sent to the receiver, not for verifying a sender's digital signature - using it here would mix up confidentiality and authentication operations.

CReceiver's public key

Encrypting the message digest with the receiver's public key describes asymmetric message encryption for confidentiality, not a digital signature - it would mean only the receiver could decrypt it but would not prove who sent it.

DSender's private keyCorrect

A digital signature is created by the sender hashing the message to produce a digest and then encrypting that digest with the sender's private key. Because the private key is known only to the sender, only they could have produced that encrypted digest, which provides non-repudiation and authentication. The receiver (or anyone) can verify the signature by decrypting the digest with the sender's widely available public key and comparing it to a freshly computed hash of the received message.

Concept tested: Digital signature key usage and message digest signing

Source: https://csrc.nist.gov/publications/detail/fips/186/5/final

Topics

#digital signature#message digest#private key encryption#non-repudiation

Community Discussion

No community discussion yet for this question.

Full 312-50V9 Practice