Skip to Content

CompTIA SY0-701: What Security Technique Prevents Tampering of Finalized Software?

By: Author Alex Lim

Posted on  - Last updated:

Categories Exam

Learn about the most effective security technique for preventing tampering of finalized software versions, according to CompTIA SY0-701 exam objectives. Discover why hashing is the best choice compared to encryption, baselines, and tokenization.

Table of Contents

Question

A company wants to ensure that the software it develops will not be tampered with after the final version is completed. Which of the following should the company most likely use?

A. Hashing
B. Encryption
C. Baselines
D. Tokenization

Answer

A. Hashing

Explanation

Hashing is the technique a company should most likely use to ensure that the final version of the software it develops will not be tampered with after completion.

Hashing is a one-way cryptographic function that takes an input (like a software file) and produces a fixed-size string of characters called a hash or message digest. Even a tiny change to the original input will result in a completely different hash value.

By computing the hash of the finalized software and securely storing that hash value, the company can later verify the integrity of the software. If they recompute the hash of the software file and it matches the stored hash, that proves the software hasn’t been altered. If the hashes don’t match, that indicates the software has been tampered with.

The other options are not the best fit:

  • Encryption is reversible and used to protect the confidentiality of data, not integrity.
  • Baselines record the state of a system for later comparison but don’t prevent tampering.
  • Tokenization replaces sensitive data with a token, but doesn’t verify integrity.

In summary, hashing is the go-to technique for ensuring the integrity of finalized software and detecting any tampering or modifications after the final version is complete.

CompTIA SY0-701 certification exam assessment practice question and answer (Q&A) dump including multiple choice questions (MCQ) and objective type questions, with detail explanation and reference available free, helpful to pass the CompTIA SY0-701 exam and earn CompTIA SY0-701 certification.