Question 1

What are the two keys used with asymmetric cryptography? What are the uses of assymetric cryptography?

Accepted Answer

2 keys: Public key (can be distributed and shared), private key (must be kept confidential) 2 uses: 1. Encrypts or decrypts a set of data 2. used as proof to verify a “signature” of the sender

Question 2

What is a digital signature? What is it's weakness?

Accepted Answer

Electronic verification of the sender Weakness: Only proves the owner of the private and key and does not confirm the true identity of the sender

Question 3

What is a digital certificate?

Accepted Answer

A technology used to associate a user's identity to a public key and that has been “digitally signed” by a trusted third party"

Question 4

What is a certification authority (CA)?

Accepted Answer

Entity that is responsible for digital certificates

Question 5

What are some of the ways a digital certificate may be authenticated?

Accepted Answer

Email Documents In person

Question 6

What is a certificate repository (CR)?

Accepted Answer

A certificate repository (CR) is a publicly accessible centralized directory of digital certificates that can be used to view the status of a digital certificate

Question 7

What is certificate revocation? What are two ways you check if a certificate is revoked?

Accepted Answer

Expiration of a digital certificate to ensure security is not compromised Methods to see if a certificate is revoked: 1. certificate revocation list (CRL) is a list of certificate serial numbers that have been revoked 2. Online Certificate Status Protocol (OCSP)

Question 8

What is a root digital certificate?

Accepted Answer

A certificate that is created and verified by a CA. Root certificate trusts the intermediate certificates which is the next level down Self signed and does not depend on higher authority for authentication

Question 9

What is a domain digital certificate?

Accepted Answer

Certificates that ensure the authenticity of the web server to the client and the authenticity of the cryptographic connection to the web server

Question 10

What are the different types of domain validation digital certificates? (hint 4)

Accepted Answer

1. Domain Validation: Certification that verifies the identity of the entity that has control over the domain name 2. Extended Validation (EV): Certificate that requires more extensive verification of the legitimacy of the business than does a domain validation digital certificate. 3. Wildcard: Certificate used to validate a main domain along with all subdomains. 4. Also known as a Unified Communications Certificate ( UCC ), certificate primarily used for Microsoft Exchange servers or unified communications.

Question 11

Name 3 Hardware and Software Digital Certificates:

Accepted Answer

1. Machine/Computer digital Certificate: Certificate used to verify the identity of a device in a network transaction. 2. Code signing digital certificate: Used by software developers to digitally sign a program to prove that the software comes from the entity that signed it 3. Email Digital certificate: certificate that allows a user to digitally sign and encrypt mail messages.

Question 12

What is the standard format for digital certificates? What certificate attributes make up this format?

Accepted Answer

X.509 Attributes that must be included are the certificate validity period, end-host identity information, encryption keys that will be used for secure communications, the signature of the issuing CA, and the common name (CN).

Question 13

What is public key infrastructure? (PKI)

Accepted Answer

underlying infrastructure for the management of public keys used in digital certificates.

Question 14

What is a trust model?

Accepted Answer

The type of trust relationship that can exist between individuals or entities.

Question 15

What is the Hierarchical trust model?

Accepted Answer

Public Key infrstructure (PKI) trust model assigns a single hierarchy with one master CA called the root . The root signs all digital certificate authorities with a single key

Brainscape's Knowledge GenomeTM

Module 7 Flashcards

Brainscape's Knowledge Genome^TM