Which two of the following statements are true regarding the CA in a PKI deployment?

Which two of the following statements are true regarding the CA in a PKI deployment? (Choose two.)

Question:

Which two of the following statements are true regarding the CA in a PKI deployment?

Options:

The CA is the trusted third party that signs the public keys of entities in a PKI-based system.

The CA issues either a certificate revocation list (CRL) or uses an OCSP process to determine certificate validity.

The CA becomes the center point of communications between two hosts using certificates that are issued by the CA.

A root CA is not necessary in a PKI.

Correct Answer

The Correct Answer for this Question is

The CA is the trusted third party that signs the public keys of entities in a PKI-based system.
The CA issues either a certificate revocation list (CRL) or uses an OCSP process to determine certificate validity.

Leave a Comment