Certificate Authorities Flashcards

1
Q

Who verifies that, the user is who they say they are, and allows for certificate authorities, to issue a digital certificate?

A

Registration Authorities

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Who creates the digital certificate for a user?

A

Certificate Authorities

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Who act as trusted third parties to validate that the certificates are being issued to the correct people?

A

The Root Certificate Authorities

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is a on a Certificate Revocation List (CRL)?

A

A list of digital certificates that have been revoked by the CA.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What protocol is used to check the revocation status of a digital certificate?

A

Online Certificate Status Protocol (OCSP)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

When a certificate holder collects the OCSP record to show to a browser during the SSL or TLS handshake, what is this known as?

A

OCSP Stapling

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

How do secure websites (HTTPS) resist impersonation attacks?

A

They present a set of trusted public keys to the users browser called using Public Key Pinning.

Note: This is presented in the HTTP header

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What is the process of securing a copy of a users private key?

A

Key Escrow

Note: Used in organizations to ensure they don’t lose data.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What kind of specialized software allows the restoration of a lost or corrupted key?

A

Key Recovery Agent

How well did you know this?
1
Not at all
2
3
4
5
Perfectly