Practice 9.8.8
What is a PKI?
A hierarchy of compuers for issuing certificates
A PKI is an implementation for managing which type of encryption?
Asymmetric
Which of the following conditions does not result in a certificate being added to the certificate revocation list?
Certificate expiration
When is the best time to apply for a certificate renewal?
Near the end of the certificate's valid lifetime
Which technology was developed to help improve the efficiency and reliability of checking the validity status of certificates in large complex environments?
Online Certificate Status Protocol
You have lost the private key that you have used to encrypt files. You need to get a copy of the private key to open some encrypted files. Who should you contact?
Recovery agent
Which of the following is an entity that accepts and validates information contained within a request for a certificate
Registration authority
An SSL client has determined that the Certificate Authority CA issuing a server's certificate is on its list of trusted CAs. What is the next step in verifying the server's identity?
The CA's public key must validate the CA's digital signature on the server certificate
Which action is taken when the private key associated with a digital certificate becomes compromised?
The certificate is revoked and added to the Certificate Revocation list
Certificate revocation should occur under all but which of the following conditions?
The certificate owner has held the certificate beyond the established lifetime timer
How many keys are used with Public Key cryptography?
Two
Which of the following items are contained in a digital certificates? (2)
Validity period/ Public key
Which standard is most widely used for certificates?
X.509
Which aspect of a certificate makes it a reliable and useful mechanism for proving the identity of a person, system or service on the internet?
It is a trusted third-party
To obtain a digital certificate and participate in a PKI what must be submitted and where?
Identifying data and a certification request to the registration authority