nerdexam
(ISC)2

CISSP · Question #1112

In software development, which of the following entities normally signs the code to protect the code integrity?

The correct answer is D. The developer. Code signing is the process of applying a digital signature to a piece of code to verify its authenticity and integrity. Code signing helps protect the code from unauthorized modification, tampering, or corruption. Code signing also helps users and systems to identify the source

Submitted by haru.x· Mar 5, 2026Software Development Security

Question

In software development, which of the following entities normally signs the code to protect the code integrity?

Options

  • AThe organization developing the code
  • BThe quality control group
  • CThe data owner
  • DThe developer

How the community answered

(38 responses)
  • A
    3% (1)
  • B
    8% (3)
  • C
    3% (1)
  • D
    87% (33)

Explanation

Code signing is the process of applying a digital signature to a piece of code to verify its authenticity and integrity. Code signing helps protect the code from unauthorized modification, tampering, or corruption. Code signing also helps users and systems to identify the source and trustworthiness of the code. In software development, the entity that normally signs the code is the developer who created or modified the code. The developer uses a private key to sign the code and a public key certificate to associate the signature with the developer's identity. The developer's signature can then be verified by anyone who has the corresponding public key or a trusted certificate authority (CA).

Topics

#code signing#code integrity#software development lifecycle (SDLC)#digital signatures

Community Discussion

No community discussion yet for this question.

Full CISSP Practice