Certificate Authority — CompTIA Security+ (SY0-701) Practice Questions
A Certificate Authority (CA) is a trusted entity that issues, signs, and revokes digital certificates, binding a public key to an identity such as a domain name or a person. SY0-701 tests candidates on the distinction between root CAs, intermediate CAs, and registration authorities, as well as on the chain of trust that allows a client to verify a certificate without directly trusting every issuing CA. The exam also covers the security implications of a compromised CA, including the mass invalidation of issued certificates and the risk of attackers issuing fraudulent certificates for legitimate domains.
Free questions on certificate authority
A company wants to implement a public key infrastructure (PKI) solution. Which component is responsible for issuing and revoking digital certificates?
Free question · easy · full answer + explanation
More certificate authority questions in the full bank
- During TLS inspection in a reverse proxy, the proxy must maintain its own certificate authority. Why is this required? Unlock answer & explanation →
- What is a certificate authority (CA) and its role? Unlock answer & explanation →
- What is the primary purpose of a digital certificate in PKI? Unlock answer & explanation →