Which of the following MUST be implemented to support this requirement?

A security administrator must implement a system to ensure that invalid certificates are not used by a
custom developed application. The system must be able to check the validity of certificates even when
internet access is unavailable. Which of the following MUST be implemented to support this
requirement?

A security administrator must implement a system to ensure that invalid certificates are not used by a
custom developed application. The system must be able to check the validity of certificates even when
internet access is unavailable. Which of the following MUST be implemented to support this
requirement?

A.
CSR

B.
OCSP

C.
CRL

D.
SSH

Show Hint

Leave a Reply 1

Your email address will not be published. Required fields are marked *

two × 3 =

Paul S

Paul S

Clearly the emphasis on this question is a downed internet access. With OCSP, the system asks if the certificate is good and basically gets a yes/no answer. Quicker but requires access to the Internet. CRL is basically a downloaded list so periods of non-access to the Internet will still yield some (possibly outdated) answer. C meets the requirement of the question.

Reply