1.4 Public Key Infrastructure

Question 1

Public Key Infrastructure

Answer 1

-framework that enables secure, encrypted communication and authentication over the internet and other networks

Question 2

Public and private keys

Answer 2

-cryptographic keys used for encryption and decryption. The public key is distributed widely, while the private key is kept confidential.

Question 3

Digital Certificates

Answer 3

-electronic documents that bind a public key to an individual’s or entity’s identity

-issued by a trusted third party known as a Certificate Authority (CA)

Question 4

Certificate Authority

Answer 4

-an entity that issues digital certificates and verifies the identity of the entities requesting them

Question 5

Registration Authority (RA)

Answer 5

-a mediator between users and the CA. It is responsible for accepting requests for digital certificates and verifying the identity of the requester before the CA issues a certificate

Question 6

Certificate Revocation List (CRL)

Answer 6

-This is a list of digital certificates that have been revoked before their expiration date, usually due to compromise or other security concerns.

Question 7

Key Management

Answer 7

-This involves the generation, storage, distribution, and destruction of cryptographic keys, ensuring that keys are used securely throughout their lifecycle

Question 8

Key escrow

Answer 8

-a cryptographic key management scheme where a copy of the encryption keys used to secure data is held in a secure location by a trusted third party