
Which of the following can provide the highest confidence level in the validity of a message and its origin? (Wentz QOTD)
A. MD5
B. SHA256
C. HMAC
D. AES
Kindly be reminded that the suggested answer is for your reference only. It doesn’t matter whether you have the right or wrong answer. What really matters is your reasoning process and justifications.
My suggested answer is C. HMAC.
Wentz’s book, The Effective CISSP: Security and Risk Management, helps CISSP and CISM aspirants build a solid conceptual security model. It is a tutorial for information security and a supplement to the official study guides for the CISSP and CISM exams and an informative reference for security professionals.

Authenticity is “the property of being genuine and being able to be verified and trusted; confidence in the validity of a transmission, a message, or message originator.” (NIST)
- HMAC enforces authenticity.
- MD5 and SHA256 enforce data integrity.
- AES enforces confidentiality

Reference
以下哪項可以提供對消息有效性(validity)及其來源的最高置信度? (Wentz QOTD)
A. MD5
B. SHA256
C. HMAC
D. AES