From the course: CompTIA CySA+ (CS0-002) Cert Prep: 4 Software and Systems Security
Unlock the full course today
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Revoking a digital certificate
From the course: CompTIA CySA+ (CS0-002) Cert Prep: 4 Software and Systems Security
Revoking a digital certificate
- [Instructor] The security of a digital certificate depends upon the security of the private key associated with that certificate. If the certificate owner's private key is compromised, the certificate authority needs a way to revoke that digital certificate so that it can't be used to impersonate the owner. There are two methods for revoking a digital certificate. Both are maintained by the certificate authority who originally issued the certificate. The first original approach is the Certificate Revocation List or CRL. When the CA wishes to revoke a digital certificate using the CRL, the simply places the serial number of that certificate on the list. Anyone access the digital certificate is responsible for downloading the CA's Certificate Revocation List and verifying that the serial number of the certificate is not included on that list before relying on it. This approach is a little inefficient because it often has…
Contents
-
-
-
-
-
-
-
-
(Locked)
Understanding encryption4m 15s
-
(Locked)
Symmetric and asymmetric cryptography4m 34s
-
(Locked)
Goals of cryptography2m 26s
-
(Locked)
Choosing encryption algorithms2m 41s
-
(Locked)
Key exchange3m 2s
-
(Locked)
Diffie-Hellman5m 16s
-
(Locked)
Trust models3m 7s
-
(Locked)
PKI and digital certificates4m 20s
-
(Locked)
Hash functions7m 30s
-
(Locked)
Digital signatures4m 4s
-
(Locked)
Creating a digital certificate4m 37s
-
(Locked)
Revoking a digital certificate1m 46s
-
(Locked)
-
-
-
-
-
-
-