Certificate Authorities Flashcards
Who verifies that, the user is who they say they are, and allows for certificate authorities, to issue a digital certificate?
Registration Authorities
Who creates the digital certificate for a user?
Certificate Authorities
Who act as trusted third parties to validate that the certificates are being issued to the correct people?
The Root Certificate Authorities
What is a on a Certificate Revocation List (CRL)?
A list of digital certificates that have been revoked by the CA.
What protocol is used to check the revocation status of a digital certificate?
Online Certificate Status Protocol (OCSP)
When a certificate holder collects the OCSP record to show to a browser during the SSL or TLS handshake, what is this known as?
OCSP Stapling
How do secure websites (HTTPS) resist impersonation attacks?
They present a set of trusted public keys to the users browser called using Public Key Pinning.
Note: This is presented in the HTTP header
What is the process of securing a copy of a users private key?
Key Escrow
Note: Used in organizations to ensure they don’t lose data.
What kind of specialized software allows the restoration of a lost or corrupted key?
Key Recovery Agent