CompTIA CASP+ (CAS-004) — Question 512

A software development company wants to ensure that users can confirm the software is legitimate when installing it. Which of the following is the best way for the company to achieve this security objective?

Answer options

• A. Code signing
• B. Non-repudiation
• C. Key escrow
• D. Private keys

Correct answer: A

Explanation

Code signing is the best method because it allows the software developer to digitally sign the software, ensuring users can verify its authenticity and integrity. Non-repudiation refers to ensuring that a party cannot deny the authenticity of their signature or the sending of a message, but it does not directly verify software legitimacy. Key escrow involves storing cryptographic keys with a third party, which does not relate to software verification. Private keys are essential for code signing but do not by themselves provide a mechanism for users to confirm software legitimacy.