The public relations department at your company regularly sends out emails signed by the company's CEO with announcements about the company. The CEO sends company and personal emails from a different email account. A competitor is suing your company for copyright infringement. As part of the investigation, you must provide legal counsel with a copy of all emails that came from the CEO, including

those generated by the public relations department. The email server allows emails to be digitally signed, and the corporate PKI provisioning allows for one certificate per user. The CEO did not share their password with anyone. You need to provide legal counsel with information on how to determine if a particular email came from the public relations department or from the CEO. What should you do?

A. Implement Digital Rights Management (DRM).
B. Use non-repudiation.
C. Implement encryption.
D. Employ key escrow.

B
Explanation: You should use non-repudiation. Non-repudiation is provided when an email includes a digital signature.
Digital rights management (DRM) allows an organization to control and track who has access to data. Encryption protects data. Key escrow ensures that encryption keys can be retrieved from a third party.