A certificate authority takes which of the following actions in PKI?
A.
Signs and verifies all infrastructure messages
B.
Issues and signs all private keys
C.
Publishes key escrow lists to CRLs
D.
Issues and signs all root certificates
Get 50% Discount on All Your Purchases
at PrepAway.com - Latest Exam Questions
This is ONE TIME OFFER
50%
D issues and signs all root certs
0
0
The one thing to keep in mind is that a CA (Certificate Authority) deals solely with CERTIFICATES
Certificate Authorities, or Certificate Authorities / CAs, issue Digital Certificates.
Digital Certificates are verifiable small data files that contain identity credentials to help websites, people, and devices represent their authentic online identity (authentic because the CA has verified the identity).
CAs play a critical role in how the Internet operates and how transparent, trusted transactions can take place online.
CAs issue millions of Digital Certificates each year, and these certificates are used to protect information, encrypt billions of transactions, and enable secure communication.
Things that a certificate authority does not do:
A – Signs and verifies all infrastructure messages
B – Issues and signs all private keys
C – Publishes key escrow lists to CRLs
Explanation:
A certificate authority can issue multiple certificates in the form of a tree structure.
A root certificate is part of a public key infrastructure (PKI) scheme.
The most common commercial variety is based on the ITU-T X.509 standard, which normally includes a digital signature from a certificate authority (CA).
Note: In cryptography and computer security, a root certificate is an unsigned public key certificate (also called self-signed certificate) that identifies the Root Certificate Authority (CA).
0
0