CompTIA CASP+ Practice Test

What should Ann implement to stop unauthorized modifications of her software?

• A. Incorporate strong password protection.
• B. Use encryption methods on the final product.
• C. Utilize remote attestation.
• D. Regularly update her software.

The correct answer is: Utilize remote attestation.

Utilizing remote attestation is a strong approach to ensure the integrity of software, particularly in environments where security is paramount. Remote attestation allows a system to prove that it is running genuine software in a secure manner. By verifying the software against a known good state, it protects against unauthorized modifications that could compromise the system's integrity. Remote attestation typically involves checking the software's cryptographic hashes against trusted values stored in a trusted platform module (TPM) or a similar secure hardware component. This process helps ensure that the software has not been tampered with, which is essential for maintaining the security and reliability of the application. Therefore, its implementation is key to safeguarding against unauthorized changes, providing a strong layer of defense for the software integrity. The other choices, while they contribute to the overall security posture, do not directly prevent unauthorized software modifications in the same effective way as remote attestation. Strong password protection helps limit access but does not address software integrity directly. Encryption protects data confidentiality but does not guarantee that the software itself remains unaltered. Regular software updates are vital for security against known vulnerabilities, but they don't inherently prevent unauthorized modifications. Thus, remote attestation stands out as the best method to prevent unauthorized changes.