CISSP · Question #1075
Which of the following is the PRIMARY type of cryptography required to support non-repudiation of a digitally signed document?
The correct answer is B. Asymmetric. Non-repudiation in digital signatures requires asymmetric cryptography because only the signer possesses the private key used to create the signature, making it impossible to deny authorship.
Question
Options
- AMessage digest (MD)
- BAsymmetric
- CSymmetric
- DHashing
How the community answered
(36 responses)- A3% (1)
- B86% (31)
- C8% (3)
- D3% (1)
Why each option
Non-repudiation in digital signatures requires asymmetric cryptography because only the signer possesses the private key used to create the signature, making it impossible to deny authorship.
Message digest (MD) algorithms like MD5 produce a fixed-length hash of data but do not involve key pairs or identity binding, so they cannot alone provide non-repudiation.
Asymmetric cryptography uses a mathematically linked key pair - a private key (kept secret by the signer) and a public key (shared openly). When a document is signed with the signer's private key, any recipient can verify it with the corresponding public key, proving only that individual could have created the signature. This binding of identity to action is the foundation of non-repudiation, as the signer cannot credibly deny signing without claiming their private key was compromised.
Symmetric cryptography uses a single shared secret key known to multiple parties, meaning any party with the key could have created the message, making it impossible to uniquely attribute authorship and thus it cannot support non-repudiation.
Hashing is a one-way function used to verify data integrity (e.g., confirming a document hasn't changed), but without a private key to bind the hash to a specific identity, it does not provide non-repudiation on its own.
Concept tested: Asymmetric cryptography enabling digital signature non-repudiation
Source: https://learn.microsoft.com/en-us/azure/security/fundamentals/encryption-overview#digital-signatures
Topics
Community Discussion
No community discussion yet for this question.