Dion - Public Key Infrastructure - pg 94

Question 1

What is PKI?

Answer 1

Public Key Infrastructure

System of hardware, software, policies and procedures based on asymmetric encryption.

Question 2

What kind of tunnel can you create with PKI?

Answer 2

SSL/TLS

Question 3

How do you create a SSL/TLS tunnel with PKI?

Answer 3

Sending from Bob to Jane.

1. Bob encrypts Plaintext with Jane’s public key.
2. Ciphertext is sent
3. Jane decrypts the message with her private key.

Question 4

How do you create a HTTPS connection with PKI?

Answer 4

Both the sender and receiver have the same Shared Secret Key.

Question 5

Is PKI and Public Key Encryption the same thing?

Answer 5

Nope!

PKI is the entire system, and just uses public key cryptography.

Question 6

What is a Digital Certificate?

Answer 6

Digitally signed electronic documents that bid a public key with a user’s identity.

Question 7

What is X.509?

Answer 7

The standard used PKI for digital certificates.

Contains

• Owner’s info
• Certificate authority’s info

Question 8

What are Wildcard Certificates?

Answer 8

• Allow all subdomains to use the same public key certificate.
• Easier to manage

Question 9

What is a SAN - Subject Alternative Name?

Answer 9

Allows the certificate owner to specify additional domains and IP addresses.

Question 10

What is a single-sided certificate?

Answer 10

They only require the server to be validated.

Dual requires the server and the user to be validated.

Question 11

What is X.690?

Answer 11

A certificate standard.

It uses BER,