CompTIA
CAS-002 · Question #672
CAS-002 Question #672: Real Exam Question with Answer & Explanation
The correct answer is D: Code signing. Code signing is the specific security process that cryptographically binds a developer's identity to an executable or script, allowing recipients to verify both authenticity and integrity before execution.
Question
A certain script was recently altered by the author to meet certain security requirements, and needs to be executed on several critical servers. Which of the following describes the process of ensuring that the script being used was not altered by anyone other than the author?
Options
- ADigital encryption
- BDigital signing
- CPassword entropy
- DCode signing
Explanation
Code signing is the specific security process that cryptographically binds a developer's identity to an executable or script, allowing recipients to verify both authenticity and integrity before execution.
Common mistakes.
- A. Digital encryption protects the confidentiality of data by making it unreadable to unauthorized parties, but it does not establish authorship or detect post-signing modifications.
- B. Digital signing is a broad cryptographic concept encompassing signatures on many data types; code signing is the precise term for applying this process specifically to software, scripts, and executables.
- C. Password entropy measures the randomness and unpredictability of a password to resist brute-force attacks and has no relevance to verifying the integrity or origin of a script.
Concept tested. Code signing for script integrity and author verification
Reference. https://learn.microsoft.com/en-us/windows/win32/seccrypto/code-signing-best-practices
Community Discussion
No community discussion yet for this question.