CISA Certified Information Systems Auditor – Question2987

The purpose of code signing is to provide assurance that:

A.
the software has not been subsequently modified.
B. the application can safely interface with another signed application.
C. the signer of the application is trusted.
D. the private key of the signer has not been compromised.

Correct Answer: A

Explanation:

Explanation:
Code signing can only ensure that the executable code has not been modified after being signed. The other choices are incorrect and actually represent potential and exploitable weaknesses of code signing.