nerdexam
(ISC)2

CISSP · Question #285

In order to assure authenticity, which of the following are required?

The correct answer is C. Authentication and non-repudiation. According to the CISSP All-in-One Exam Guide, the things that are required to assure authenticity are authentication and non-repudiation. Authenticity is the property that ensures that the data, information, system, network, or entity is genuine, original, and trustworthy, and is

Submitted by tarun92· Mar 5, 2026Security and Risk Management

Question

In order to assure authenticity, which of the following are required?

Options

  • AConfidentiality and authentication
  • BConfidentiality and integrity
  • CAuthentication and non-repudiation
  • DIntegrity and non-repudiation

How the community answered

(27 responses)
  • A
    4% (1)
  • B
    7% (2)
  • C
    89% (24)

Explanation

According to the CISSP All-in-One Exam Guide, the things that are required to assure authenticity are authentication and non-repudiation. Authenticity is the property that ensures that the data, information, system, network, or entity is genuine, original, and trustworthy, and is not counterfeit, altered, or impersonated. Authentication is the process of verifying and confirming the identity or the validity of a subject or an entity, such as a user, a device, or a message. Authentication helps to assure authenticity, as it ensures that the subject or the entity is who or what it claims to be, and is not an impostor, a fraud, or a forgery. Non-repudiation is the process of preventing or denying the denial or the dispute of an action or an event, such as the sending, receiving, or signing of a message. Non-repudiation helps to assure authenticity, as it ensures that the subject or the entity cannot deny or reject the authenticity or the validity of the action or the event, and is held accountable and responsible for it. Confidentiality is not the thing that is required to assure authenticity, although it may be a thing that is supported or enhanced by authenticity. Confidentiality is the property that ensures that the data or information is only accessible or disclosed to the authorized parties, and is protected from unauthorized or unintended access or disclosure. Confidentiality may be supported or enhanced by authenticity, as it ensures that the data or information is not accessed or disclosed by the impostors, frauds, or forgeries, and that the data or information is not counterfeit, altered, or impersonated. However, confidentiality is not the thing that is required to assure authenticity, as it does not verify or confirm the identity or the validity of the subject or the entity, or prevent or deny the denial or the dispute of the action or the event. Integrity is not the thing that is required to assure authenticity, although it may be a thing that is supported or enhanced by authenticity. Integrity is the property that ensures that the data or information is accurate, complete, and consistent, and is protected from unauthorized or unintended modification or corruption. Integrity may be supported or enhanced by authenticity, as it ensures that the data or information is not modified or corrupted by the impostors, frauds, or forgeries, and that the data or information is genuine, original, and trustworthy. However, integrity is not the thing that is required to assure authenticity, as it does not verify or confirm the identity or the validity of the subject or the entity, or prevent or deny the denial or the dispute of the action or the event.

Topics

#authenticity#authentication#non-repudiation#security principles

Community Discussion

No community discussion yet for this question.

Full CISSP Practice