nerdexam
F5

101 · Question #486

Which type of certificate is pre-installed in a web browser's trusted store?

The correct answer is A. Root Certificate. Root certificates from trusted Certificate Authorities are pre-installed in web browsers as the foundation of the PKI trust chain used to validate all other certificates.

Section 4: Security Basics

Question

Which type of certificate is pre-installed in a web browser's trusted store?

Options

  • ARoot Certificate
  • BServer Certificate
  • CClient Certificate
  • Dintermediate Certificate

How the community answered

(58 responses)
  • A
    93% (54)
  • B
    2% (1)
  • C
    3% (2)
  • D
    2% (1)

Why each option

Root certificates from trusted Certificate Authorities are pre-installed in web browsers as the foundation of the PKI trust chain used to validate all other certificates.

ARoot CertificateCorrect

Root certificates are self-signed certificates issued by trusted Certificate Authorities and are embedded directly into browser and OS trust stores during installation. They serve as the ultimate trust anchor - when a server presents a certificate, the browser traces the chain of signatures up to a pre-installed root certificate to verify legitimacy.

BServer Certificate

Server certificates are issued to individual web servers and installed on those servers, not pre-loaded into browser trust stores.

CClient Certificate

Client certificates are used to authenticate end users or devices to a server and are not pre-installed in browser trust stores.

Dintermediate Certificate

Intermediate certificates are part of the certificate chain provided by the server during the TLS handshake and are not typically pre-installed in browser trust stores.

Concept tested: PKI root certificate trust store in web browsers

Source: https://learn.microsoft.com/en-us/azure/security/fundamentals/certificate-management

Topics

#root certificate#trusted store#PKI#SSL/TLS

Community Discussion

No community discussion yet for this question.

Full 101 Practice