|
Home > Archive > 70-216 > August 2003 > Enforcers 216 QOD (18/8)
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
Enforcers 216 QOD (18/8)
|
|
| enforcer 2003-08-18, 7:41 am |
| What is a subordinate CA normally used for? (Choose all that apply)
A. Subordinate CAs are normally used to issue certificates to end users for sending secure e-mail
B. Subordinate CAs are normally only used to issue certificates to root CAs
C. Subordinate CAs are normally used to issue certificates to end users for Web-based authentication
D. Subordinate CAs are normally used to issue certificates to end users for smart card authentication
Will be away from the office for the next 3 days, so answer will be on Friday.
10 | |
| karlisi 2003-08-18, 9:43 am |
| A, C, D | |
| jocampo 2003-08-18, 11:52 pm |
| A, C, D | |
| cramersaunders 2003-08-19, 2:31 pm |
| A C D | |
| enforcer 2003-08-22, 9:25 am |
| quote:
Originally posted by enforcer
What is a subordinate CA normally used for? (Choose all that apply)
A. Subordinate CAs are normally used to issue certificates to end users for sending secure e-mail
B. Subordinate CAs are normally only used to issue certificates to root CAs
C. Subordinate CAs are normally used to issue certificates to end users for Web-based authentication
D. Subordinate CAs are normally used to issue certificates to end users for smart card authentication
Will be away from the office for the next 3 days, so answer will be on Friday.
And the answer is AC&D
A root CA, sometimes called a root authority , is meant to be the most trusted type of CA in an organization's PKI. Typically, both the physical security and the certificate issuance policy of a root CA are more rigorous than those for subordinate CAs; if the root CA is compromised or issues a certificate to an unauthorized entity, then any certificate-based security in your organization is suddenly vulnerable. While root CAs can be used to issue certificates to end users for such tasks as sending secure e-mail, in most organizations they will only be used to issue certificates to other CAs, called subordinate CAs.
A subordinate CA is a CA that has been certified by another CA in your organization. Typically, a subordinate CA will issue certificates for specific uses, such as secure e-mail, Web-based authentication, or smart card authentication. Subordinate CAs can also issue certificates to other, more subordinate CAs. Together, a root CA, the subordinate CAs that have been certified by the root, and subordinate CAs that have been certified by other subordinate CAs form a certification hierarchy |
|
|
|
|