Which of the following should be implemented?

seenagapeOctober 27, 2017

A company wants to ensure that the validity of publicly trusted certificates used by its web server can be
determined even during an extended internet outage. Which of the following should be implemented?

A.
Recovery agent

B.
Ocsp

C.
Crl

D.
Key escrow

4 Comments on “Which of the following should be implemented?”

Curly says:

October 30, 2017 at 5:47 pm

How can this be answer B?
Question states during an internet outage.
Answer has to be C: CRL

0

3

Log in to Reply
1. Dominus says:
  
  November 1, 2017 at 10:32 am
  
  I could be wrong but you would need to download the CRL, but you won’t be able to do so if the AC is offline. OCSP on the other hand, OCSP stabling eliminates the need for a browser to request the OCSP response directly from the CA.
  
  I believe the provided answer is correct.
  
  0
  
  1
  
  Log in to Reply
  1. GK says:
    
    January 6, 2018 at 6:22 am
    
    OSCP generally makes use of HTTP or HTTPS for transport. So in case of an Internet outage, you cannot use it.
    
    0
    
    0
    
    Log in to Reply
Curly says:

November 1, 2017 at 3:51 pm

After thinking about it and reading the question again, it says “Publicly trusted certificates” and to get those certificates you would have to download then into your CRL which is accessible while there is no internet. So technically yes it would be from the OCSP.

0

0

Log in to Reply

Get 50% Discount on All Your Purchases
at PrepAway.com - Latest Exam Questions

This is ONE TIME OFFER

Enter your email address to receive your 50% off dicount code:

SPECIAL OFFER: GET 50% OFF

Use Discount Code:

CompTIA Exam Questions

Free CompTIA Study Guide

Which of the following should be implemented?

4 Comments on “Which of the following should be implemented?”

Leave a Reply Cancel reply