Scan QR code or get instant email to install app
Question:
Nickie is responsible for cryptographic keys in his company. What is the best way to deauthorize a public key?
A
Publish that certificate in the CRL.
explanation
Certificate revocation lists (CRLs) are designed specifically for revoking certificates. Since public keys are distributed via certificates, this is the most effective way to deauthorize a public key.
Sending out a network alert is incorrect. Simply notifying users that a key/certificate is no longer valid is not effective.
Delete the digital certificate is incorrect. Deleting a certificate is not always possible and ignores the possibility of a duplicate of that certificate existing.
Option Notify the RA is incorrect. The registration authority (RA) is used in creating new certificates, not in revoking them.
Take more free practice tests for other PASSEMALL topics with our security + practice exam now!
Related Information
Comments