9781111640125_IM_ch12

Security+ Guide to Network Security Fundamentals

  • Notes
  • 10
  • 100% (1) 1 out of 1 people found this document helpful

This preview shows page 3 - 6 out of 10 pages.

6. Explain that modern Web browsers are preconfigured with a default list of CAs, which allows the user to take advantage of digital certificates without the need to manually load information. Types of Digital Certificates 1. Describe the additional uses of digital certificates, including the following: a. Encrypt channels to provide secure communication b. Encrypt messages for secure Internet e-mail communication c. Verify the identity of clients and servers on the Web d. Verify the source and integrity of signed executable code 2. Describe the following categories of digital certificates: a. Personal digital certificates b. Server digital certificates (see Figures 12-5 through 12-6) c. Software publisher digital certificates 3. Explain that when Bob sends one digital certificate to Alice along with his message, this is known as a single-sided certificate. 4. Define dual-sided certificates as certificates in which the functionality is split between two certificates: the signing certificate and the encryption certificate. Teaching Tip Certificates can also contain other user-supplied information, such as an e-mail address, postal address, and basic registration information, such as the country or region, postal code, age, and gender of the user.
Image of page 3

Subscribe to view the full document.

Security+ Guide to Network Security Fundamentals, Fourth Edition 12-4 5. Describe the advantages of dual-sided certificates, including the following: a. Reduce the need for storing multiple copies of the signing certificate b. Facilitate certificate handling in organizations 6. Define X.509 Digital Certificates as the most widely accepted format for digital certificates. 7. Use Table 12-1 to describe the structure of a X.509 certificate. Quick Quiz 1 1. ____ can be used to associate or “bind” a user’s identity to a public key. Answer: Digital certificates 2. Revoked digital certificates are listed in a(n) ____, which can be accessed to check the certificate status of other users. Answer: Certificate Revocation List (CRL) Certificate Revocation List CRL 3. ____ digital certificates are often issued from a Web server to a client, although they can be distributed by any type of server, such as a mail server. Answer: Server 4. ____ certificates are certificates in which the functionality is split between two certificates. Answer: Dual-sided Public Key Infrastructure (PKI) 1. Explain that public key infrastructure involves public-key cryptography standards, trust models, and key management. Teaching Tip When Bob sends a dual-sided certificate to Alice she will receive two certificates instead of one. Teaching Tip In an X.509 system, the CA can issue a certificate binding a public key to a unique name or to an alternate identifier such as a DNS entry or e-mail address.
Image of page 4
Security+ Guide to Network Security Fundamentals, Fourth Edition 12-5 What Is Public Key Infrastructure (PKI)?
Image of page 5

Subscribe to view the full document.

Image of page 6
You've reached the end of this preview.
  • '
  • NoProfessor
  • Cryptography, Public key infrastructure, Public-key cryptography, Certificate authority, digital certificates, Network Security Fundamentals

{[ snackBarMessage ]}

What students are saying

  • Left Quote Icon

    As a current student on this bumpy collegiate pathway, I stumbled upon Course Hero, where I can find study resources for nearly all my courses, get online help from tutors 24/7, and even share my old projects, papers, and lecture notes with other students.

    Student Picture

    Kiran Temple University Fox School of Business ‘17, Course Hero Intern

  • Left Quote Icon

    I cannot even describe how much Course Hero helped me this summer. It’s truly become something I can always rely on and help me. In the end, I was not only able to survive summer classes, but I was able to thrive thanks to Course Hero.

    Student Picture

    Dana University of Pennsylvania ‘17, Course Hero Intern

  • Left Quote Icon

    The ability to access any university’s resources through Course Hero proved invaluable in my case. I was behind on Tulane coursework and actually used UCLA’s materials to help me move forward and get everything together on time.

    Student Picture

    Jill Tulane University ‘16, Course Hero Intern