nerdexam
ExamsSY0-301Questions#825
CompTIA

SY0-301 · Question #825

SY0-301 Question #825: Real Exam Question with Answer & Explanation

The correct answer is C: CA. A Certificate Authority (CA) is the trusted third party that signs and issues digital certificates, thereby affirming the identity of the certificate owner.

Question

When reviewing a digital certificate for accuracy, which of the following would Matt, a security administrator, focus on to determine who affirms the identity of the certificate owner?

Options

  • ATrust models
  • BCRL
  • CCA
  • DRecovery agent

Explanation

A Certificate Authority (CA) is the trusted third party that signs and issues digital certificates, thereby affirming the identity of the certificate owner.

Common mistakes.

  • A. A trust model describes the framework and hierarchy by which CAs are trusted, but does not itself affirm any individual certificate owner's identity.
  • B. A Certificate Revocation List (CRL) lists certificates that have been revoked before expiry and is used to check certificate validity, not to affirm identity.
  • D. A recovery agent is used to decrypt data when a user's key is lost, which has no role in affirming the identity of a certificate owner.

Concept tested. Role of Certificate Authority in PKI

Reference. https://learn.microsoft.com/en-us/windows-server/identity/ad-cs/active-directory-certificate-services-overview

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full SY0-301 Practice