nerdexam
CompTIA

CV0-003 · Question #787

A systems administrator needs to implement a way for users to verify software integrity. Which of the following tools would BEST meet the administrator's needs?

The correct answer is D. SHA-512. SHA-512 is a cryptographic hash function that produces a fixed-length digest of a file, allowing users to verify that software has not been tampered with by comparing the digest against a published value.

Security

Question

A systems administrator needs to implement a way for users to verify software integrity. Which of the following tools would BEST meet the administrator's needs?

Options

  • ATLS 1.3
  • BCRC32
  • CAES-256
  • DSHA-512

How the community answered

(42 responses)
  • A
    5% (2)
  • B
    2% (1)
  • C
    2% (1)
  • D
    90% (38)

Why each option

SHA-512 is a cryptographic hash function that produces a fixed-length digest of a file, allowing users to verify that software has not been tampered with by comparing the digest against a published value.

ATLS 1.3

TLS 1.3 is a transport layer security protocol used to encrypt data in transit between endpoints, not a tool for verifying static file integrity.

BCRC32

CRC32 is a cyclic redundancy check designed for error detection in data transmission and is not a cryptographic function - it is trivially easy to forge and unsuitable for security-grade integrity verification.

CAES-256

AES-256 is a symmetric encryption algorithm used to protect the confidentiality of data, not to produce a verifiable hash digest for integrity checking.

DSHA-512Correct

SHA-512 is a member of the SHA-2 family of cryptographic hash functions and is designed specifically to produce a unique, one-way fingerprint of data. Administrators publish the SHA-512 hash of a software package, and users run the same hash on their downloaded file - if the digests match, integrity is confirmed. Its 512-bit output makes it highly resistant to collision attacks compared to weaker alternatives.

Concept tested: Cryptographic hashing for software integrity verification

Source: https://learn.microsoft.com/en-us/dotnet/standard/security/ensuring-data-integrity-with-hash-codes

Topics

#software integrity#hashing#SHA-512#cryptography

Community Discussion

No community discussion yet for this question.

Full CV0-003 Practice