nerdexam
(ISC)2

CISSP · Question #1483

Which of the following BEST describes an access control method utilizing cryptographic keys derived from a smart card private key that is embedded within mobile devices?

The correct answer is A. Derived credential. A derived credential refers to a cryptographic credential (such as a key) that is derived from a secure source, like a smart card's private key, and is used for authentication or access control. In the context of mobile devices, derived credentials are typically stored and used o

Submitted by andreas_gr· Mar 5, 2026Identity and Access Management

Question

Which of the following BEST describes an access control method utilizing cryptographic keys derived from a smart card private key that is embedded within mobile devices?

Options

  • ADerived credential
  • BTemporary security credential
  • CMobile device credentialing service
  • DDigest authentication

How the community answered

(22 responses)
  • A
    86% (19)
  • C
    9% (2)
  • D
    5% (1)

Explanation

A derived credential refers to a cryptographic credential (such as a key) that is derived from a secure source, like a smart card's private key, and is used for authentication or access control. In the context of mobile devices, derived credentials are typically stored and used on devices (e.g., smartphones or tablets) to authenticate users in a manner similar to how smart cards would be used for physical security or authentication in a traditional environment. The smart card private key serves as the secure root for deriving these credentials, which are then used by the mobile device for secure access and authentication to various systems or services. This method is commonly employed to enable secure access to enterprise resources from mobile devices without exposing sensitive private keys directly.

Topics

#Derived credential#Smart card#Mobile security#Authentication

Community Discussion

No community discussion yet for this question.

Full CISSP Practice