Basics of Cryptography
Questions derived from the CompTIA SY0-101 – Security+ Self Test Software Practice Test.
Objective: Basics of Cryptography
SubObjective: Understand and be able to explain the following concepts of PKI: Certificates (Certificate Policies, Certificate Practice Statements), Revocation, Trust Models
Item Number: SY0-220.127.116.11
Single Answer, Multiple Choice
What is contained within an X.509 CRL?
- Digital certificates
- Private keys
- Public keys
- Serial numbers
D. Serial numbers
An X.509 Certificate Revocation List (CRL) contains a list of serial numbers of unexpired or revoked digital certificates that should be considered invalid. CRLs are created by certificate authorities (CAs).
Public and private keys are used in encryption, which can be used to protect the confidentiality of file contents. A digital certificate is an electronic document that contains authentication credentials. Although a CRL contains information about digital certificates, a CRL does not contain digital certificates.
Wikipedia.org, Certificate Revocation List, http://en.wikipedia.org/wiki/Certificate_revocation_list