Ch 4

What protocol below supports two encryption modes: transport and tunnel?

When two individuals trust each other because of the trust that exists between the individuals and a separate entity, what type of trust has been established?

Which of the following certificates are self-signed?

What process will remove all private and public keys along with the user's identification information in the CA?

What term best represents the resiliency of a cryptographic key to attacks?

Which of the following is an enhanced type of domain digital certificate?

A framework for all of the entities involved in digital certificates for digital certificate management is known as:

What is a value that can be used to ensure that plaintext, when hashed, will not consistently result in the same digest?

What type of trust model has a single CA that acts as a facilitator to interconnect all other CAs?

Which of the following is a valid way to check the status of a certificate? (Choose two.)

A user electronically signs a Certificate Signing Request (CSR) by affixing their public key and then sending it to an intermediate certificate authority.

Stream ciphers work on multiple characters at a time.

A certificate repository (CR) is a publicly accessible centralized directory of digital certificates.

A Subject Alternative Name (SAN) digital certificate, is also known as a Unified Communications Certificate (UCC).

A digital certificate is a technology used to associate a user's identity to a private key.

Root digital certificates are self-signed.

Some CAs issue only entry-level certificates that provide domain-only validation.

Some cryptographic algorithms require that in addition to a key another value can or must be input.

SSL v3.0 served as the basis for TLS v1.0.

Digital certificates should last forever.