nerdexam
EC-Council

312-50V10 · Question #362

Which of the following processes of PKI (Public Key Infrastructure) ensures that a trust relationship exists and that a certificate is still valid for specific operations?

The correct answer is B. Certificate validation. Certificate validation is the PKI process that confirms a certificate is trusted, unexpired, and not revoked - establishing that it is legitimate and appropriate for a given cryptographic operation.

Cryptography

Question

Which of the following processes of PKI (Public Key Infrastructure) ensures that a trust relationship exists and that a certificate is still valid for specific operations?

Options

  • ACertificate issuance
  • BCertificate validation
  • CCertificate cryptography
  • DCertificate revocation

How the community answered

(34 responses)
  • B
    91% (31)
  • C
    6% (2)
  • D
    3% (1)

Why each option

Certificate validation is the PKI process that confirms a certificate is trusted, unexpired, and not revoked - establishing that it is legitimate and appropriate for a given cryptographic operation.

ACertificate issuance

Certificate issuance is the process by which a CA creates and distributes a new certificate to a requester - it establishes the certificate but does not verify an existing one's ongoing validity.

BCertificate validationCorrect

Certificate validation verifies the full chain of trust by checking that the certificate is signed by a trusted CA, that the chain leads to a trusted root, that the certificate has not expired, and that it has not been revoked via CRL (Certificate Revocation List) or OCSP (Online Certificate Status Protocol). This process is what ensures both the trust relationship and the current operational validity of the certificate.

CCertificate cryptography

Certificate cryptography is not a defined PKI process - it loosely describes the cryptographic algorithms embedded in certificates rather than any specific lifecycle operation.

DCertificate revocation

Certificate revocation is the act of invalidating a certificate before its natural expiry, which is only one factor checked during the validation process, not the validation process itself.

Concept tested: PKI certificate validation and chain of trust verification

Source: https://learn.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server-2003/cc759126(v=ws.10)

Topics

#PKI#certificate validation#trust chain#digital certificates

Community Discussion

No community discussion yet for this question.

Full 312-50V10 Practice