nerdexam
(ISC)2

CISSP · Question #592

Which of the following is PRIMARILY adopted for ensuring the integrity of information is preserved?

The correct answer is B. Transport Layer Security (TLS). Transport Layer Security (TLS) is primarily used to ensure data integrity during transmission by using cryptographic hash functions (MAC/HMAC) to detect any tampering or modification of data in transit.

Submitted by emma.c· Mar 5, 2026Communication and Network Security

Question

Which of the following is PRIMARILY adopted for ensuring the integrity of information is preserved?

Options

  • AData at rest protection
  • BTransport Layer Security (TLS)
  • CRole Based Access Control (RBAC)
  • DOne-way encryption

How the community answered

(45 responses)
  • A
    4% (2)
  • B
    93% (42)
  • C
    2% (1)

Why each option

Transport Layer Security (TLS) is primarily used to ensure data integrity during transmission by using cryptographic hash functions (MAC/HMAC) to detect any tampering or modification of data in transit.

AData at rest protection

Data at rest protection (e.g., disk encryption) primarily ensures confidentiality of stored data, not integrity during transmission or active use.

BTransport Layer Security (TLS)Correct

TLS ensures information integrity by employing message authentication codes (MACs) and cryptographic hash functions that detect any unauthorized modification of data during transmission. If data is altered in transit, the MAC verification fails, ensuring the recipient knows the integrity has been compromised. TLS also provides confidentiality and authentication, but its core role in preserving integrity through hashing mechanisms makes it the primary answer here.

CRole Based Access Control (RBAC)

Role Based Access Control (RBAC) is an authorization mechanism that controls who can access resources, but it does not directly preserve or verify the integrity of the information itself.

DOne-way encryption

One-way encryption (hashing) can support integrity verification when used as a standalone mechanism, but it is not a comprehensive protocol adopted for ensuring integrity in the same operational context as TLS, which integrates integrity checks as part of a full security protocol.

Concept tested: TLS protocol role in ensuring data integrity

Source: https://learn.microsoft.com/en-us/windows-server/security/tls/tls-ssl-schannel-ssp-overview

Topics

#Data integrity#TLS#Cryptographic protocols#Network security

Community Discussion

No community discussion yet for this question.

Full CISSP Practice