Which item lists certificates that are no longer trusted?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $25.99Unlock all

Study for the WGU ITAS 2142 D830 Introduction to Cryptography Exam. Review flashcards and multiple choice questions with hints and explanations. Get ready for your exam!

Multiple Choice

Which item lists certificates that are no longer trusted?

Explanation:
In PKI, when a certificate should no longer be trusted—whether due to key compromise, loss of the private key, or other revocation reasons—the issuer communicates that status through a revocation mechanism. The Certificate Revocation List is the formal, signed list published by the Certificate Authority that contains the serial numbers of certificates that have been revoked before their expiration. This list is what clients check to determine if a certificate is still trusted; if its serial number is on the CRL, the certificate is considered no longer valid. A Certificate Authority is the entity that issues and signs certificates, not the list of revoked ones. A Registration Authority helps verify identities on behalf of the CA but doesn’t publish revocation data. Tokenization is a data-security technique unrelated to certificate trust status. Therefore, the item that lists certificates no longer trusted is the Certificate Revocation List.

In PKI, when a certificate should no longer be trusted—whether due to key compromise, loss of the private key, or other revocation reasons—the issuer communicates that status through a revocation mechanism. The Certificate Revocation List is the formal, signed list published by the Certificate Authority that contains the serial numbers of certificates that have been revoked before their expiration. This list is what clients check to determine if a certificate is still trusted; if its serial number is on the CRL, the certificate is considered no longer valid.

A Certificate Authority is the entity that issues and signs certificates, not the list of revoked ones. A Registration Authority helps verify identities on behalf of the CA but doesn’t publish revocation data. Tokenization is a data-security technique unrelated to certificate trust status. Therefore, the item that lists certificates no longer trusted is the Certificate Revocation List.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy