When a user visits an online store website that uses HTTPS, the user browser queries the CA for a CRL. What is the purpose of this query?
- to check the length of key used for the digital certificate
- to negotiate the best encryption to use
- to verify the validity of the digital certificate
- to request the CA self-signed digital certificate
Explanation: A digital certificate must be revoked if it is invalid. CAs maintain a certificate revocation list (CRL), a list of revoked certificate serial numbers that have been invalidated. The user browser will query the CRL to verify the validity of a certificate.
Exam with this question: CCNA Cyber Ops Practice Final Exam Answers
Please login or Register to submit your answer