While analyzing network traffic, a security engineer discovers that confidential emails were passing between two users who should not have had this information. The two users deny sending confidential emails to each other.
Which of the following security practices would allow for non-repudiation and prevent the users from removing emails such as these from their accounts? (Select TWO).
PLEASE PROVIDE AN EXPLANATION TO THE TWO ANSWER CHOICES AS WELL AS WHY THE OTHER OPTIONS ARE NOT CORRECT FOR AN UPVOTE - THANK YOU
Correct Answers: Digital signature and Legal hold
Explanation:
Digital signature is something like a signature which assures the particular sender. So Digital signature would allow for non-repudiation (Assurance that sender cant deny about sending the confidential mail).
TSIG code signing has to deal with networking. It's a allows the DNS to authenticate updates. It doesn't have anything to deal with emails.
Legal hold is a notification that is sent to organizations legal team informing about the confidential emails. It prevent the users from removing confidential emails.
Authentication hashing has to deal with credentials authentication. It will not deal with confidentiality of emails.
Transport encryption again deals with networking certificates and identity verification. it doesn't deal with confidentiality.
While analyzing network traffic, a security engineer discovers that confidential emails were passing between two users...
Chapter 06 Applied Cryptography 1. How is integrity provided? A. Using two-way hash functions and digital signatures B. Using one-way hash functions and digital signatures C. By applying a digital certificate D. By using asymmetric encryption 2. Which term refers to the matching of a user to an account through previously shared credentials? A. Nonrepudiation B. Digital signing C. Authentication D. Obfuscation 3. Which term refers to an arranged group of algorithms? A. Crypto modules B. Cryptographic service providers (CSPs)...