CISSP · Question #830
Which of the following could elicit a Denial of Service (DoS) attack against a credential management system?
The correct answer is B. Modification of Certificate Revocation List. The modification of Certificate Revocation List (CRL) could elicit a Denial of Service (DoS) attack against a credential management system by altering the list of revoked certificates and preventing valid users from accessing the system or allowing invalid users to access the sys
Question
Which of the following could elicit a Denial of Service (DoS) attack against a credential management system?
Options
- ADelayed revocation or destruction of credentials
- BModification of Certificate Revocation List
- CUnauthorized renewal or re-issuance
- DToken use after decommissioning
How the community answered
(30 responses)- A17% (5)
- B73% (22)
- C3% (1)
- D7% (2)
Explanation
The modification of Certificate Revocation List (CRL) could elicit a Denial of Service (DoS) attack against a credential management system by altering the list of revoked certificates and preventing valid users from accessing the system or allowing invalid users to access the system. A CRL is a list of digital certificates that have been revoked by the issuing Certificate Authority (CA) before their expiration date and should not be trusted.
Topics
Community Discussion
No community discussion yet for this question.