CompTIA SecurityX (CAS-005) — Question 177

A software vendor provides routine functionality and security updates to its global customer base. The vendor would like to ensure distributed updates are authorized, originate from only the company, and have not been modified by others. Which of the following solutions best supports these objectives?

Answer options

• A. Envelope encryption
• B. File integrity monitoring
• C. Application control
• D. Code signing

Correct answer: D

Explanation

Code signing is the best choice because it guarantees that the software updates are authentic and have not been altered by validating the digital signature. Envelope encryption primarily focuses on securing data, while file integrity monitoring checks for unauthorized changes, and application control restricts the execution of applications rather than verifying their authenticity.