SY0-301 Question #249: Real Exam Question with Answer & Explanation

The correct answer is A: Import the recipient's public key. In PGP (Pretty Good Privacy), asymmetric encryption is used: the sender encrypts the message using the recipient's public key, and only the recipient can decrypt it using their corresponding private key. Therefore, to send an encrypted email to someone for the first time, the sen

Question

In order to securely communicate using PGP, the sender of an email must do which of the following when sending an email to a recipient for the first time?

Options

AImport the recipient's public key
BImport the recipient's private key
CExport the sender's private key
DExport the sender's public key

Explanation

In PGP (Pretty Good Privacy), asymmetric encryption is used: the sender encrypts the message using the recipient's public key, and only the recipient can decrypt it using their corresponding private key. Therefore, to send an encrypted email to someone for the first time, the sender must obtain and import the recipient's public key into their keyring. The recipient's public key is meant to be freely shared. Importing the recipient's private key (B) is never done - private keys are never shared; doing so would completely compromise the recipient's security. Exporting the sender's private key (C) is also never shared - it must remain secret. Exporting the sender's public key (D) is something the sender may do to share with others so they can send encrypted messages back, but it is not required to send an outbound encrypted message.

Community Discussion

No community discussion yet for this question.

Full SY0-301 Practice