When a certificate is revoked, what is the proper procedure?
A.
Setting new key expiry dates
B.
Updating the certificate revocation list
C.
Removal of the private key from all directories
D.
Notification to all employees of revoked keys
Explanation:
B: When a key is no longer valid the certificate revocation list should be updated. A certificate revocation list (CRL) is a list of non-valid certificates that should not be accepted by any member of the PKI.
Page 383.
Updating the certificate revocation list CRL.