nerdexam
EC-Council

312-50V10 · Question #359

A Certificate Authority (CA) generates a key pair that will be used for encryption and decryption of email. The integrity of the encrypted email is dependent on the security of which of the following?

The correct answer is B. Private key. In asymmetric cryptography, the private key is the secret component that must be protected - its compromise allows an attacker to decrypt any data encrypted with the corresponding public key.

Cryptography

Question

A Certificate Authority (CA) generates a key pair that will be used for encryption and decryption of email. The integrity of the encrypted email is dependent on the security of which of the following?

Options

  • APublic key
  • BPrivate key
  • CModulus length
  • DEmail server certificate

How the community answered

(38 responses)
  • A
    5% (2)
  • B
    87% (33)
  • C
    3% (1)
  • D
    5% (2)

Why each option

In asymmetric cryptography, the private key is the secret component that must be protected - its compromise allows an attacker to decrypt any data encrypted with the corresponding public key.

APublic key

The public key is intentionally distributed to anyone who needs to send encrypted data and its exposure is expected and does not compromise security.

BPrivate keyCorrect

The private key is the only component that must remain secret in a public key cryptography system. If the private key is exposed or stolen, an attacker can decrypt all messages encrypted with the paired public key, completely undermining confidentiality. The entire security model of asymmetric encryption depends on the private key never being disclosed.

CModulus length

Modulus length determines the computational strength of the key but is not itself a secret - it is a parameter of the key, not the key material that must be protected.

DEmail server certificate

The email server certificate authenticates the server identity but is not the element protecting the confidentiality of individual encrypted email messages.

Concept tested: Private key secrecy in asymmetric PKI encryption

Source: https://learn.microsoft.com/en-us/azure/security/fundamentals/encryption-overview

Topics

#PKI#private key security#certificate authority#digital certificates

Community Discussion

No community discussion yet for this question.

Full 312-50V10 Practice