Why does a PKI need a means to cancel or invalidate certificates? Why is it not sufficient for the PKI to stop distributing a certificate after it becomes invalid?
What will be an ideal response?
Certificates can be forged or can have the private keys used to create them compromised. When such an event is discovered,any questionable certificates are added to certificate revocation lists; it is the duty of the system that checksa certificate for validity (e.g., the web browser) to also check the certificate revocation lists for that certificate. Certificates can have long lifespans (sometimes years) so, without the possibility of revocation, a compromised certificate could cause problems for a very long time.
You might also like to view...
The following statement should print the integer value of 'c'. cout << 'c';
What will be an ideal response?
Which action does NOT result in unwanted files on your computer?
A) Software installation B) Surfing the Internet C) Unexpected program crashes D) Running Error-checking
Author and LastSavedBy will always have the same name the first time the document is saved
Indicate whether the statement is true or false
The ____ is the number of bits used to encode each sample.
A. digital rate B. pixel rate C. bit rate D. bit depth