Digital signature users register their public keys with a certification authority, which distributes a
certificate containing the user’s public key and digital signature of the certification authority. In
creating the certificate, the user’s public key and the validity period are combined with what other
information before computing the digital signature?

A.
Certificate issuer and the Digital Signature Algorithm identifier

B.
User’s private key and the identifier of the master key code

C.
Name of secure channel and the identifier of the protocol type

D.
Key authorization and identifier of key distribution center

Explanation:
The key word is ‘In create the certificate..” Certificates Certificates that conform to
X.509 contain the following data: Version of X.509 to which the certificate conforms; Serial number
(from the certificate creator); Signature algorithm identifier (specifies the technique used by the
certificate authority to digitally sign the contents of the certificate); Issuer name (identification of
the certificate authority that issues the certificate) Validity period (specifies the dates and times – a
starting date and time and an ending date and time – during which the certificate is validated);
Subject’s name (contains the distinguished name, or DN, of the entity that owns the public key
contained in teh certificate); Subject’s public key (the meat of the certificate – the actual public key
of the certificate owner used to setup secure communications) pg 343-344 CISSP Study Guide
byTittel