ISC2 Systems Security Certified Practitioner (SSCP) Practice Question
Your organization processes high-value financial transactions on an internal web service. To satisfy a new compliance requirement for non-repudiation, security leadership plans to redesign the audit-logging approach. Which of the following strategies will best enhance the audit trail so that users cannot later deny having performed recorded actions?
Store all audit logs on the application server's local disk and allow administrators to modify them only when troubleshooting.
Enable verbose debugging and application error logging, but overwrite log files every seven days to limit disk growth.
Compress and encrypt log files weekly before moving them to on-site tape storage managed by the operations team.
Forward each log entry in real time to a centralized, append-only repository that applies digital signatures and uses synchronized time sources.
Non-repudiation requires the organization to prove that a specific subject performed an action and that the related audit record has not been altered. Forwarding events to a protected, append-only log store while cryptographically signing each entry and using synchronized timestamps provides tamper-evidence and trusted time correlation, making it extremely difficult for a user to refute the action later. Simply keeping logs locally, shortening retention, or encrypting/compressing them without integrity controls does not ensure that entries cannot be modified or deleted after the fact; nor does relying solely on application error messages. Therefore, the centralized, digitally signed, append-only repository is the most effective choice for supporting non-repudiation.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is non-repudiation in cybersecurity?
Open an interactive chat with Bash
Why are digital signatures used in audit logging?
Open an interactive chat with Bash
How does synchronized time improve audit logging integrity?
Open an interactive chat with Bash
ISC2 Systems Security Certified Practitioner (SSCP)
Cryptography
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99 $11.99
$11.99/mo
Billed monthly, Cancel any time.
$19.99 after promotion ends
3 Month Pass
$44.99 $26.99
$8.99/mo
One time purchase of $26.99, Does not auto-renew.
$44.99 after promotion ends
Save $18!
MOST POPULAR
Annual Pass
$119.99 $71.99
$5.99/mo
One time purchase of $71.99, Does not auto-renew.
$119.99 after promotion ends
Save $48!
BEST DEAL
Lifetime Pass
$189.99 $113.99
One time purchase, Good for life.
Save $76!
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .