CompTIA Security+ SY0-301 Authorized Cert Guide, Deluxe Edition, Second Edition > Chapter 13. PKI and Encryption Protocols > Answers and Explanations

Table of Contents

Download Safari Books Online apps: Apple iOS | Android

Entire Site

Free Trial

Safari Books Online is a digital library providing on-demand subscription access to thousands of learning resources.

This Book

CompTIA Security+ SY0-301 Authorized Cert Guide, Deluxe Edition, Second Edition

Search

Table of Contents

We Want to Hear from You!

CompTIA

Introduction

Chapter 1. Introduction to Security

Chapter 2. Computer Systems Security

Chapter 3. OS Hardening and Virtualization

Chapter 4. Application Security

Chapter 5. Network Design Elements and Network Threats

Chapter 6. Network Perimeter Security

Chapter 7. Securing Network Media and Devices

Chapter 8. Physical Security and Authentication Models

Chapter 9. Access Control Methods and Models

Chapter 10. Vulnerability and Risk Assessment

Chapter 11. Monitoring and Auditing

Chapter 12. Encryption and Hashing Concepts

Chapter 13. PKI and Encryption Protocols

Foundation Topics

Public Key Infrastructure

Security Protocols

Exam Preparation Tasks

Review Key Topics

Define Key Terms

Hands-On Labs

View Recommended Resources

Answer Review Questions

Answers and Explanations

Chapter 14. Redundancy and Disaster Recovery

Chapter 15. Policies, Procedures, and People

Chapter 16. Taking the Real Exam

Practice Exam 1. CompTIA Security+ SY0-301

Practice Exam 2. CompTIA Security+ SY0-301

Glossary

Master List of Key Topics

Index

Appendix A. Memory Tables

Appendix B. Memory Tables Answer Key

Answers and Explanations

1. D. In x.509, the owner does not use a symmetric key. All the other answers apply to x.509.

2. B and C. A digital certificate includes the Certificate Authority’s (CA) digital signature and the user’s public key. A user’s private key should be kept private and should not be within the digital certificate. The IP address of the CA should have been known to the user’s computer before obtaining the certificate.

3. D. When creating key pairs, PKI has two methods: centralized and decentralized. Centralized is when keys are generated at a central server and are transmitted to hosts. Decentralized is when keys are generated and stored on a local computer system for use by that system.

4. A. IPsec is usually used with L2TP. SSH is a more secure way of connecting to remote computers. PHP is a type of language commonly used on the web. SHA is a type of hashing algorithm.

You are currently reading a PREVIEW of this book.

Get instant access to over
$1 million worth of books and videos.

Start a Free Trial