101 · Question #486
Which type of certificate is pre-installed in a web browser's trusted store?
The correct answer is A. Root Certificate. Root certificates from trusted Certificate Authorities are pre-installed in web browsers as the foundation of the PKI trust chain used to validate all other certificates.
Question
Which type of certificate is pre-installed in a web browser's trusted store?
Options
- ARoot Certificate
- BServer Certificate
- CClient Certificate
- Dintermediate Certificate
How the community answered
(58 responses)- A93% (54)
- B2% (1)
- C3% (2)
- D2% (1)
Why each option
Root certificates from trusted Certificate Authorities are pre-installed in web browsers as the foundation of the PKI trust chain used to validate all other certificates.
Root certificates are self-signed certificates issued by trusted Certificate Authorities and are embedded directly into browser and OS trust stores during installation. They serve as the ultimate trust anchor - when a server presents a certificate, the browser traces the chain of signatures up to a pre-installed root certificate to verify legitimacy.
Server certificates are issued to individual web servers and installed on those servers, not pre-loaded into browser trust stores.
Client certificates are used to authenticate end users or devices to a server and are not pre-installed in browser trust stores.
Intermediate certificates are part of the certificate chain provided by the server during the TLS handshake and are not typically pre-installed in browser trust stores.
Concept tested: PKI root certificate trust store in web browsers
Source: https://learn.microsoft.com/en-us/azure/security/fundamentals/certificate-management
Topics
Community Discussion
No community discussion yet for this question.