Exam 6: Public Key Infrastructure

A registration authority is the PKI component that certifies an individual's identity and creates electronic documents indicating that individuals are who they say they are.

PKI can be used as a measure to trust individuals we do not know.

Explain what certificate revocation is and give examples of when it might be necessary.

What is a registration authority?

Outsourced CAs are different from Public CAs in what way?

List the steps for validating a certificate

The difference between centralized and decentralized infrastructures is

One of the steps necessary to validate a certificate is to

A certificate authority is the PKI component that accepts a request for a digital certificate and performs the necessary steps of registering and authenticating the person requesting the certificate.

_______________ is a trusted authority that certifies individuals' identities and creates electronic documents indicating that individuals are who they say they are.

All of the following statements sum up the characteristics and requirements of proper private key use EXCEPT:

_______________ is the process of giving the keys to a third party so that they can decrypt and read sensitive information if the need arises.

"Digital certificate" and "private key" are two different terms for the same thing.

Requiring two individuals to recover a lost key together is called

An in-house certificate authority is

The X.509 standard outlines the necessary fields of a certificate and the possible values that can be in each field.

A(n)_______________ binds a user's identity to a public key,and contains all the information the receiver needs to be assured of the identity of the public key owner.

What are the three types of trust models?

The peer-to-peer trust model is well suited for large environments and avoids complex setups.

Certificate expansions allow for further information to be inserted within the certificate to add functionality to a PKI implementation. Extensions,not expansions.