nerdexam
ExamsCV0-003Questions#787
CompTIA

CV0-003 · Question #787

CV0-003 Question #787: Real Exam Question with Answer & Explanation

The correct answer is D: SHA-512. SHA-512 is a cryptographic hash function that produces a fixed-length digest of a file, allowing users to verify that software has not been tampered with by comparing the digest against a published value.

Security

Question

A systems administrator needs to implement a way for users to verify software integrity. Which of the following tools would BEST meet the administrator's needs?

Options

  • ATLS 1.3
  • BCRC32
  • CAES-256
  • DSHA-512

Explanation

SHA-512 is a cryptographic hash function that produces a fixed-length digest of a file, allowing users to verify that software has not been tampered with by comparing the digest against a published value.

Common mistakes.

  • A. TLS 1.3 is a transport layer security protocol used to encrypt data in transit between endpoints, not a tool for verifying static file integrity.
  • B. CRC32 is a cyclic redundancy check designed for error detection in data transmission and is not a cryptographic function - it is trivially easy to forge and unsuitable for security-grade integrity verification.
  • C. AES-256 is a symmetric encryption algorithm used to protect the confidentiality of data, not to produce a verifiable hash digest for integrity checking.

Concept tested. Cryptographic hashing for software integrity verification

Reference. https://learn.microsoft.com/en-us/dotnet/standard/security/ensuring-data-integrity-with-hash-codes

Topics

#software integrity#hashing#SHA-512#cryptography

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CV0-003 Practice