Cyber Security Practice Test – All things PKI – Nov 2023

Answer: a) Issues digital certificates.
Explanations:
a) The CA is responsible for issuing, revoking, and managing digital certificates, which is a key role in the PKI ecosystem.
b) Users generate their own private keys; this is not the responsibility of the CA.
c) While encryption of email may utilize certificates, the CA does not perform the actual encryption.
d) SSH tunnels are established between clients and servers, independent of the CA.

Answer: b) By encrypting the message hash with the sender’s private key.
Explanations:
a) Encrypting the entire message with a private key would provide confidentiality, not integrity.
b) A digital signature is created by encrypting the hash of a message with the sender’s private key, ensuring the message hasn’t been altered.
c) Encrypting anything with a public key would not ensure integrity since public keys are widely available.
d) Public keys are used to encrypt messages for confidentiality, not for creating a digital signature for integrity.

Answer: c) The server’s public certificate.
Explanations:
a) The client’s public certificate is not used in this phase of a TLS handshake.
b) Private certificates (or keys) are never transmitted or presented; they must remain confidential.
c) The server presents its public certificate to the client to facilitate a secure key exchange.
d) The CA’s private certificate does not exist; CAs have a public certificate used to sign other certificates.

Answer: b) Public/private key pairs.
Explanations:
a) Certificate revocation lists are used to check the revocation status of certificates, not to establish SSH tunnels.
b) SSH tunnels use public/private key pairs to authenticate users and establish a secure channel.
c) Digital certificate signatures are used to verify the integrity and authenticity of a digital certificate.
d) OCSP stapling is a method for checking the revocation status of an X.509 digital certificate, not for establishing SSH tunnels.

Answer: c) To verify the sender’s identity and ensure the document’s integrity.
Explanations:
a) Using a private certificate for signing does not relate to the decryption capabilities of the audience.
b) Digital signatures do not encrypt the document itself, so they do not restrict decryption.
c) A private certificate (or key) is used for signing to verify the sender’s identity (authentication) and confirm that the document has not been altered (integrity).
d) The choice between private and public certificates does not significantly affect the speed of the digital signature process.

Answer: a) Public keys decrypt what the private key encrypts and vice versa.
Explanations:
a) This is the fundamental principle of public-key cryptography used in PKI—what one key encrypts, only the other can decrypt.
b) Public keys do not generate private keys; they are mathematically related but generated together as a pair.
c) Private keys cannot be derived from public keys; that would compromise the security model of PKI.
d) Public keys are not used to encrypt data solely for the CA; they are used by anyone who needs to send secure data to the private key holder.

Answer: d) The recipient’s public key.
Explanations:
a) The sender’s private key is used to create digital signatures, not to encrypt messages.
b) The sender’s public key would not be used for encrypting messages they are sending.
c) The recipient’s private key is used to decrypt messages, not for encryption.
d) The recipient’s public key is used by the sender to encrypt the message, ensuring that only the recipient can decrypt it with their private key.

Answer: c) Establishing the validity of a certificate by tracing its issuance from a trusted CA.
Explanations:
a) Certificates and private keys are related, but a chain of trust is not about linking these two.
b) A certificate inherently links a user’s identity to their public key, separate from a chain of trust.
c) A chain of trust is a sequence of certificates which trace the trust from the end-user certificate up to the trusted root CA.
d) A chain of trust has no role in creating backups of keys.

Answer: a) It secures multiple subdomains with a single certificate.
Explanations:
a) A wildcard certificate is used to secure multiple subdomains of a single domain, which is cost-effective and easier to manage.
b) A wildcard certificate still requires a CA to issue and validate it.
c) A wildcard certificate does not affect the number of private keys; each server will have its own private key.
d) The strength of encryption is not directly related to the use of a wildcard certificate.

Answer: a) To recover keys that have been lost or corrupted.
Explanations:
a) Key escrow is a service that stores a copy of a private key to permit recovery if a user’s key is lost or corrupted.
b) Key escrow is about safekeeping and recovery, not adding extra encryption.
c) Key escrow is unrelated to the retrieval speed of public keys.
d) Key escrow services do not sign digital certificates; that is the role of a CA.

Answer: b) Use a physically isolated hardware security module (HSM).
Explanations:
a) Software-based cryptographic modules are less secure than hardware solutions because they can be more easily compromised if the server is breached.
b) HSMs provide a secure, tamper-resistant environment for cryptographic processes and key storage, protecting against physical and logical attacks.
c) Encrypting the key with a passphrase protects against casual access but can still be vulnerable to brute force attacks or exposure if the passphrase is compromised.
d) Regularly changing the key increases security but storing it on a network drive can expose it to network-based attacks.

Answer: a) OCSP provides real-time revocation status, reducing the window of exposure when using a revoked certificate.
Explanations:
a) OCSP provides near real-time revocation status, making it more current than CRLs, which are updated at regular intervals.
b) OCSP requires a network connection to the OCSP responder, so it does not allow for offline validation.
c) OCSP does not eliminate the need for revocation; it is a method for checking the revocation status.
d) The security of OCSP does not rely on faster but less secure hashing; it’s about improving the timeliness and efficiency of revocation checking.

Answer: a) A web of trust is less scalable for large organizations.
Explanations:
a) A hierarchical model, with a clear trust path from a root CA through intermediate CAs to end-user certificates, is more scalable for enterprises.
b) Hierarchical trust models fully support certificate revocation through CRLs and OCSP.
c) Hierarchical models do not require direct trust between all users; trust is derived from the CA structure.
d) A hierarchical trust model is often preferred in formal and corporate environments because it offers stronger legal defensibility due to the clear trust paths.

Answer: b) It is the top-most certificate from which all other certificates derive trust.
Explanations:
a) Root certificates are not typically used for encrypting user data; they are used to establish trust.
b) The root certificate represents the top of the trust hierarchy in a PKI structure, and all other certificates derive trust from it.
c) While it is associated with the root CA, its purpose is not limited to securing the CA’s website.
d) The root certificate is not a backup; it is the primary source of trust in the PKI hierarchy.

Answer: a) The length of the RSA keys used.
Explanations:
a) The length of RSA keys is a direct indicator of the cryptographic strength of the PKI; longer keys are harder to break.
b) While frequent rotation can mitigate certain risks, it does not inherently indicate the strength of the PKI.
c) Multi-factor authentication adds security to the process of certificate issuance but does not reflect the inherent strength of the PKI itself.
d) The number of intermediate CAs does not necessarily reflect the robustness of the PKI; it’s more about management and structure.

Answer: b) It outlines the procedures for how a CA validates identities before issuing certificates.
Explanations:
a) While cryptographic algorithms are part of the overall policy, the CP’s primary purpose is to outline identity validation procedures.
b) The CP details the practices and standards a CA follows to validate identities, issue certificates, manage keys, and handle revocation.
c) The technical specification of the certificate format is generally defined by standards like X.509, not the CP itself.
d) Access to the CA’s signing key is a security procedure, likely covered under a Certification Practice Statement (CPS), not the CP.

Answer: b) Transition to a more secure hashing algorithm, like SHA-256, due to SHA-1’s known vulnerabilities.
Explanations:
a) Immediate revocation is disruptive and unnecessary without a transition plan to a more secure algorithm.
b) SHA-1 has been compromised, making it vulnerable to collision attacks. Transitioning to a stronger hashing algorithm like SHA-256 is recommended.
c) SHA-1 is deprecated for most security applications due to its vulnerabilities, so continued use is not advised.
d) Even for low-security applications, using a vulnerable hashing algorithm like SHA-1 can pose a risk and is not recommended.

Answer: c) It provides a publicly auditable log of all certificates issued by a CA.
Explanations:
a) CT logs do not encrypt certificate data; they record and make it publicly available for transparency.
b) CT logs do not have the authority to revoke certificates; they provide an audit trail that can be used to detect misissuance.
c) CT logs are designed to provide transparency by maintaining a comprehensive, time-stamped record of all issued certificates, improving trust in the PKI.
d) CT logs have no effect on the encryption strength of certificates; they are about accountability and transparency.

Answer: b) They are less susceptible to compromise due to the short validity period.
Explanations:
a) While they reduce the dependency on revocation lists, they do not completely remove the need for them as revocation may still be necessary in certain circumstances.
b) Short-lived certificates minimize the window during which a compromise can occur and reduce the impact of a compromised key since it will soon expire.
c) The strength of the encryption is not related to the lifespan of a certificate; short-lived certificates do not necessarily use weaker algorithms.
d) Trust in browsers is established through the CA, not the lifespan of a certificate.

Answer: b) To provide a digital signature for email verification using the sender’s private key.
Explanations:
a) S/MIME does not use the CA’s public key to encrypt email content; it uses the recipient’s public key.
b) S/MIME uses the sender’s private key to digitally sign emails, providing authentication, non-repudiation, and integrity.
c) S/MIME ensures message integrity and confidentiality but does not establish direct trust relationships; trust is through the CA.
d) S/MIME encrypts the message at the application layer, not the transport layer.

Answer: a) Client-side certificate pinning.
Explanations:
a) Certificate pinning helps prevent MITM attacks by having the client validate the server’s certificate against known hashes or public keys.
b) SSRF protection safeguards against malicious server-side requests and is unrelated to MITM attacks during handshakes.
c) EV certificates provide a higher level of identity verification, but alone do not prevent MITM attacks.
d) Certificate transparency logs provide a way to detect unauthorized certificates but do not actively prevent MITM during a handshake.

Answer: a) By using the Online Certificate Status Protocol (OCSP).
Explanations:
a) OCSP is used by the PKI infrastructure to check the revocation status of a certificate in real-time before allowing access to the VPN.
b) Symmetric key encryption does not pertain to certificate revocation status.
c) A WAF is designed to filter, monitor, and block HTTP traffic to and from a web application, not to check certificate revocation.
d) SSH keys are not related to certificate-based authentication for VPNs and do not check for revocation.

Answer: a) The use of a timestamping service.
Explanations:
a) A timestamping service combined with a digital signature provides proof of the existence of the data at a specific point in time, contributing to non-repudiation.
b) While key generation is a fundamental aspect of PKI, it does not by itself provide non-repudiation.
c) A strong hash function ensures integrity, but non-repudiation requires time-stamped evidence.
d) MAC policy pertains to access control, not non-repudiation.

Answer: a) Key revocation.
Explanations:
a) Key revocation ensures that the employee’s certificate and keys can no longer be used to access encrypted emails.
b) Key escrow is about keeping backup copies of keys, which would not prevent access by a former employee.
c) Key regeneration would be part of issuing new keys for active employees, not revoking access.
d) Key expiration is a passive process and may not align with the timing of the employee’s departure.

Answer: a) mTLS requires the server to also validate the client’s certificate.
Explanations:
a) In mTLS, both the client and the server authenticate each other, requiring both parties to present and validate certificates.
b) mTLS does not inherently require a different encryption algorithm than traditional TLS.
c) mTLS generally requires CA-signed certificates to establish trustworthiness, just like traditional TLS.
d) mTLS enhances traditional TLS by using certificates for authentication, not a shared secret.

Answer: b) LDAP is used for distributing public keys and certificate revocation lists (CRLs) to clients.
Explanations:
a) LDAP does not issue or sign certificates; this is the role of a certificate authority (CA).
b) LDAP is often used to publish public keys and CRLs in a directory that clients can query to obtain certificate status and public key information.
c) LDAP does not encrypt data; it is a protocol for accessing and maintaining distributed directory information.
d) LDAP is not a timestamping authority; it does not provide timestamping services for digital signatures.

Answer: b) A CPS details the precise operational practices of a CA, whereas a CP is a broad framework outlining general policies.
Explanations:
a) A CPS does not provide encryption algorithms; it details the specific practices of how the CA follows the CP.
b) The CPS is a detailed document that describes how the CP is implemented by the CA, including the specifics of certificate issuance and management processes.
c) A CPS is not a legislative document; it is procedural, and while CPs provide the overarching rules, they do not delve into implementation specifics.
d) CPS and CP serve different purposes and are not interchangeable; one outlines policies, and the other the practices of the CA.

Answer: b) It ensures that digital documents are notarized with a legally recognized time and date of issuance or receipt.
Explanations:
a) A TSA does not generate OTPs; that is typically the function of authentication services.
b) TSAs serve to provide a timestamp that certifies the exact time a digital document was signed, providing proof of its existence at that point in time.
c) A TSA does not synchronize network device clocks; its role is specific to providing timestamps for digital signatures.
d) While time-related, a TSA does not limit the validity of certificates; it provides a timestamp for the moment a digital signature is applied.

Answer: b) To facilitate real-time validation of certificate revocation status.
Explanations:
a) OCSP does not affect the encryption strength of certificates. Encryption strength is determined by the algorithm and key size used when creating a certificate.
b) The OCSP responder allows client systems to perform a real-time check of a certificate’s revocation status without needing to download a full Certificate Revocation List (CRL), thus enhancing the efficiency and immediacy of revocation checking.
c) OCSP is not used for the distribution of certificates; that is typically managed by a certificate authority or a management system designed for certificate distribution.
d) OCSP responders do not archive certificates; they provide the current revocation status. Archiving is generally handled by separate mechanisms within the CA’s infrastructure or PKI management tools.