Why does a PKI need a means to cancel or invalidate certificates? Why is it not sufficient for the PKI to stop distributing a certificate after it becomes invalid?
What will be an ideal response?
Certificates
can
be
forged
or
can
have
the
private
keys
used
to
create
them
compromised.
When
such
an
event
is
discovered,
any
questionable
certificates
are
added
to
certificate
revocation
lists;
it
is
the
duty
of
the
system
that
checks
a
certificate
for
validity
(e.g.,
the
web
browser)
to
also
check
the
certificate
revocation
lists
for
that
certificate.
Certificates
can
have
long
lifespans
(sometimes
years)
so,
without
the
possibility
of
revocation,
a
compromised
certificate
could
cause
problems
for
a
very
long
time.
You might also like to view...
What are the two key aspects of application protocols, and what does each include?
What will be an ideal response?
Write the code that adds the comment “Page Updated on 4/15/2011” to an HTML file.
What will be an ideal response?
Boris has created a workbook that consists of data related to the organization he works with. The last sheet in the workbook is the documentation sheet that allows people who share the file to know the purpose of the file. The documentation sheet appears last when the workbook is opened. Which of the following should Boris do if he wants people to see this sheet first when they open the file?
A. ?Drag and drop the sheet in the leftmost place in the sheet tab. B. ?Right-click the sheet tab on the current sheet and choose Protect sheet. C. ?Press and hold the Ctrl key and select the Insert option in the sheet tab. D. ?Right-click the sheet tab on the current sheet and choose the Hide option.
You create a submit button using an image with the value __________ for thetypeattribute.
A. button B. image C. reset D. submit