Digital Signatures & Certificates Flashcards

1
Q

What is the Digital Security Standard?

A

Relies upon a 160-bit message digest created by the digital security algorithm

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is Hashing?

A

One way cryptographic input and produces a unique message digest as its output

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is a Wildcard Certificate?

A

Allows multiple subdomains to use the same certificate

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is the Subject Alternate Name (SAN Field)?

A

Certificate that specifies what additional domains and IP addresses are going to be supported

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What are Single-Sided and Dual-Sided Certificates?

A

Single-Sided: Only requires the server to be validated

Dual Sided: Requires both the server and user to be validated

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is a Self-Signed Certificate?

A

Digital certificate that is signed by the same entity whose identity it certifies

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is a Third-Party Certificate?

A

Digital certificate issued and signed by trusted Certificate Authorities (CAs)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What is the Root Of Trust?

A

Highest level of trust in certificate validation

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Who is the Certificate Authority?

A

Trusted third party who issues digital certificates

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What is the Registration Authority?

A

They request information from the user, forward that to the CA to create the digital certificate

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What is the Certificate Signing Request (CSR)?

A

A block of encoded text that contains information about the entity requesting the certificate

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What is the Certificate Revocation List (CRL)?

A

List of digital certificates that the Certificate Authority (CA) has already revoked

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What is the Online Certificate Status Protocol (OCSP)

A

Shows the revocation status of a digital certificate with a serial number

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What is OCSP Stapling?

A

Alternative to OCSP

Allows the certificate holder to get the OCSP record from the server at regular intervals

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What is Public Key Pinning?

A

Allows an HTTPS website to resist impersonation attacks from users who are trying to present fraudulent certificates

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What is a Key Escrow Agent?

A

Securely store copies of private keys

Ensures key recovery for key loss

17
Q

What is the Key Recovery Agent?

A

Specialized type of software that allows the restoration of a lost or corrupted key to be performed