CompTIA CySA+ (CS0-003) — Question 220

A Chief Finance Officer receives an email from someone who is possibly impersonating the company’s Chief Executive Officer and requesting a financial operation. Which of the following should an analyst use to verify whether the email is an impersonation attempt?

Answer options

• A. PKI
• B. MFA
• C. SMTP
• D. DKIM

Correct answer: D

Explanation

DKIM (DomainKeys Identified Mail) is used to verify the authenticity of an email by checking the digital signature associated with the sender's domain. This makes it effective for identifying impersonation attempts. While PKI, MFA, and SMTP are important for security, they do not specifically address the verification of email authenticity like DKIM does.