nerdexam
Isaca

CDPSE · Question #141

Which of the following is the PRIMARY reason to use public key infrastructure (PRI) for protection against a man-in-the-middle attack?

The correct answer is C. It makes public key cryptography feasible.. PKI's primary defense against man-in-the-middle (MITM) attacks is that it makes public key cryptography feasible by providing a trusted framework for verifying the authenticity of public keys. Without PKI, an attacker can substitute their own public key and impersonate either par

Privacy Architecture

Question

Which of the following is the PRIMARY reason to use public key infrastructure (PRI) for protection against a man-in-the-middle attack?

Options

  • AIt uses Transport Layer Security (TLS).
  • BIt provides a secure connection on an insecure network
  • CIt makes public key cryptography feasible.
  • DIt contains schemes for revoking keys.

How the community answered

(22 responses)
  • A
    5% (1)
  • B
    9% (2)
  • C
    86% (19)

Explanation

PKI's primary defense against man-in-the-middle (MITM) attacks is that it makes public key cryptography feasible by providing a trusted framework for verifying the authenticity of public keys. Without PKI, an attacker can substitute their own public key and impersonate either party - the receiver has no way to know the public key is legitimate. PKI solves this by binding public keys to verified identities through digital certificates issued by trusted Certificate Authorities (CAs). TLS (A) is a protocol that leverages PKI but is not the reason PKI stops MITM. A secure connection on an insecure network (B) is a benefit of TLS/PKI combined, not PKI alone. Key revocation (D) is a PKI feature but is not the primary anti-MITM mechanism.

Topics

#Public Key Infrastructure (PKI)#Man-in-the-Middle (MITM)#Public Key Cryptography#Digital Certificates

Community Discussion

No community discussion yet for this question.

Full CDPSE Practice