CISSP – Information Systems Security Architecture Professional (ISSAP) — Question 81

You work as a Security Manager for Tech Perfect Inc. The management tells you to implement a hashing method in the organization that can resist forgery and is not open to the man-in-the-middle attack. Which of the following methods will you use to accomplish the task?

Answer options

• A. MD
• B. NTLM
• C. MAC
• D. SHA

Correct answer: C

Explanation

The correct answer is C, MAC (Message Authentication Code), as it provides both integrity and authenticity, making it resistant to forgery and man-in-the-middle attacks. MD and SHA are hashing algorithms that do not include authentication features, while NTLM is an authentication protocol that lacks the necessary properties for this specific requirement.