The security administrator installed a newly generated SSL certificate onto the company web
server. Due to a mis-configuration of the website, a downloadable file containing one of the pieces
of the key was available to the public. It was verified that the disclosure did not require a reissue of
the certificate. Which of the following was MOST likely compromised?
A.
The file containing the recovery agent’s keys.
B.
The file containing the public key.
C.
The file containing the private key.
D.
The file containing the server’s encrypted passwords.
Explanation:
A key was compromissed and ” It was verified that the disclosure did not require a reissue of the certificate. “
** If the SSL PRIVATE Key was compromissed, then to ” reissue of the certificate” is of absolute necesity.
The private key must be (a) revoqued and (b) a new private key must be re-issued.
** If the SSL PUBLIC key was compromised, then there is no problem, as the Public key by nature and definition is supposed to be just that: PUBLIC.
So the public key can be made available to everyone. There is no need to reissue the certificate.
0
0