nerdexam
CompTIA

SY0-301 · Question #742

Public keys are used for which of the following?

The correct answer is B. Decrypting the hash of an electronic signature. In PKI, a recipient uses the sender's public key to decrypt the encrypted hash embedded in a digital signature, verifying its authenticity and integrity.

General security concepts

Question

Public keys are used for which of the following?

Options

  • ADecrypting wireless messages
  • BDecrypting the hash of an electronic signature
  • CBulk encryption of IP based email traffic
  • DEncrypting web browser traffic

How the community answered

(20 responses)
  • A
    5% (1)
  • B
    90% (18)
  • D
    5% (1)

Why each option

In PKI, a recipient uses the sender's public key to decrypt the encrypted hash embedded in a digital signature, verifying its authenticity and integrity.

ADecrypting wireless messages

Wireless messages are decrypted using shared or session keys in symmetric encryption, not with a recipient's public key.

BDecrypting the hash of an electronic signatureCorrect

When a sender creates a digital signature, they hash the message and encrypt that hash with their private key. The recipient uses the sender's public key to decrypt (verify) that encrypted hash, confirming the signature's authenticity and that the message has not been altered. This is the primary cryptographic use of a public key in signature verification.

CBulk encryption of IP based email traffic

Bulk encryption of email traffic uses symmetric algorithms (such as AES) for performance reasons; public keys are used only to exchange or protect the symmetric key.

DEncrypting web browser traffic

Web browser traffic (HTTPS/TLS) uses the server's public key during the handshake to establish a session key, but the bulk traffic encryption itself uses symmetric keys, not the public key directly.

Concept tested: Public key use in digital signature verification

Source: https://csrc.nist.gov/publications/detail/fips/186/5/final

Topics

#public key cryptography#digital signatures#asymmetric encryption#PKI

Community Discussion

No community discussion yet for this question.

Full SY0-301 Practice