nerdexam
(ISC)2

CISSP · Question #1075

Which of the following is the PRIMARY type of cryptography required to support non-repudiation of a digitally signed document?

The correct answer is B. Asymmetric. Non-repudiation in digital signatures requires asymmetric cryptography because only the signer possesses the private key used to create the signature, making it impossible to deny authorship.

Submitted by hans_de· Mar 5, 2026Security Architecture and Engineering

Question

Which of the following is the PRIMARY type of cryptography required to support non-repudiation of a digitally signed document?

Options

  • AMessage digest (MD)
  • BAsymmetric
  • CSymmetric
  • DHashing

How the community answered

(36 responses)
  • A
    3% (1)
  • B
    86% (31)
  • C
    8% (3)
  • D
    3% (1)

Why each option

Non-repudiation in digital signatures requires asymmetric cryptography because only the signer possesses the private key used to create the signature, making it impossible to deny authorship.

AMessage digest (MD)

Message digest (MD) algorithms like MD5 produce a fixed-length hash of data but do not involve key pairs or identity binding, so they cannot alone provide non-repudiation.

BAsymmetricCorrect

Asymmetric cryptography uses a mathematically linked key pair - a private key (kept secret by the signer) and a public key (shared openly). When a document is signed with the signer's private key, any recipient can verify it with the corresponding public key, proving only that individual could have created the signature. This binding of identity to action is the foundation of non-repudiation, as the signer cannot credibly deny signing without claiming their private key was compromised.

CSymmetric

Symmetric cryptography uses a single shared secret key known to multiple parties, meaning any party with the key could have created the message, making it impossible to uniquely attribute authorship and thus it cannot support non-repudiation.

DHashing

Hashing is a one-way function used to verify data integrity (e.g., confirming a document hasn't changed), but without a private key to bind the hash to a specific identity, it does not provide non-repudiation on its own.

Concept tested: Asymmetric cryptography enabling digital signature non-repudiation

Source: https://learn.microsoft.com/en-us/azure/security/fundamentals/encryption-overview#digital-signatures

Topics

#non-repudiation#digital signatures#asymmetric cryptography#cryptography principles

Community Discussion

No community discussion yet for this question.

Full CISSP Practice