From the course: ISC2 Certified Secure Software Lifecycle Professional (CSSLP) (2023) Cert Prep

Unlock this course with a free trial

Join today to access over 25,300 courses taught by industry experts.

Nonrepudiation

Nonrepudiation

From the course: ISC2 Certified Secure Software Lifecycle Professional (CSSLP) (2023) Cert Prep

Start my 1-month free trial Buy for my team

Nonrepudiation

- It's possible that the transactions processed by your application could have real world financial and legal implications. Think about it. Do you use an app to sign up for medical benefits? Have you ever used an app to sign a legal contract? And in the hundreds of thousands of email messages that you receive each year, how many of them were related to financial transactions? All of these questions point to one larger question. How do you know the person on the other end is really who they say they are? And the answer is nonrepudiation controls. The idea behind nonrepudiation is that you have the ability to prove that the subject performed an action on an object. Nonrepudiation controls are most commonly applied to messages where both sides of that exchange want a high level of assurance regarding the other party's identity. But messages are only one area where you might want nonrepudiation. Consider usernames and passwords for a second. Banks want to keep strict controls over who can…

Contents