Cyber AB CMMC-CCA Exam - Topic 4 Question 11 Discussion

Actual exam question for Cyber AB's CMMC-CCA exam

Question #: 11
Topic #: 4

During an assessment, the IT security engineers responsible for password policy for the OSC provided documentation that all passwords are protected using a one-way hashing methodology. As a result, which statement is true?

APasswords are protected in storage and in transit.

BPasswords are transmitted across the network as clear cipher-text.

CThe password protection allows access but not authorization to assets.

DThe transformation makes it impossible to re-convert the hashed password.

Show Suggested Answer

Suggested Answer: D

A one-way hash function is a cryptographic method used to store passwords securely. It is not reversible; hashed values cannot be converted back into the original password.

Extract from SC.L2-3.13.10:

''Store and transmit authentication information in a protected form by using one-way cryptographic transformations (e.g., hashing). One-way transformations cannot be reversed to reveal the original authentication secret.''

Thus, the correct statement is that the transformation makes it impossible to re-convert the hashed password.

by Patrick at Apr 05, 2026, 10:17 AM

Limited Time Offer

25%

2 months ago

I remember discussing how one-way hashing means you can't easily revert to the original password, so maybe D is correct?

upvoted 0 times

...