🔥 40% Off Crucial Exams Memberships — This Week Only

2 days, 9 hours remaining!
Crucial Exams

ISC2 Systems Security Certified Practitioner (SSCP) Practice Question

A DevOps engineer needs to publish daily initialization scripts to an Amazon S3 bucket for automated EC2 deployments used by multiple teams. Management requires that anyone who downloads a script can verify it has not been modified in transit and that it truly originated from the central automation account, enabling accountability if a faulty script is distributed. Which approach BEST meets these integrity and authenticity requirements?

  • Compress the scripts using gzip to reduce size before uploading to the S3 bucket

  • Digitally sign each script with an AWS KMS-hosted RSA private key and distribute the matching public key for signature verification

  • Include a SHA-256 checksum file alongside every script so users can recompute and compare the hash before execution

  • Encrypt each script with an AWS KMS symmetric CMK before upload and share the key with all consuming teams

ISC2 Systems Security Certified Practitioner (SSCP)
Cryptography
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot