Which process allows security personnel to verify if there has been a change to the system's baseline?

The process that allows security personnel to verify if there has been a change to the system's baseline is attestation. This process involves a formal declaration or confirmation of the integrity, state, or quality of the system in question. When attestation is performed, it assesses whether current configurations and states match an established baseline. By comparing the current system state to the baseline, personnel can identify unauthorized changes or deviations that may indicate a security incident or compromise.

Attestation is particularly important in maintaining security compliance and assurance, as it emphasizes the need for systems to maintain their intended configurations and prevents unauthorized modifications. This process is often part of a broader security governance strategy that ensures systems remain in a known and trusted state.

The other processes, while important in their own rights, do not specifically focus on verifying changes to a system’s baseline in the same way. For example, authentication is primarily about verifying the identity of users or devices, access control involves managing permissions to resources, and identity verification is focused on the confirmation of a person's or entity's identity. Each of these plays a role in security, but attestation specifically addresses the integrity and state of the system, making it the correct choice for this context.