ExpertMedium1 markMultiple Choice
CPA · Question 78 · Area II: Security
A company uses a 'Public Key Infrastructure' (PKI). What is the role of the 'Certificate Authority' (CA)?
A company uses a 'Public Key Infrastructure' (PKI). What is the role of the 'Certificate Authority' (CA)?
Answer options:
A.
To encrypt the data.
B.
To issue and verify digital certificates, binding a public key to an identity.
C.
To store private keys.
D.
To route network traffic.
How to approach this question
CA = Passport Office. They verify who you are and give you a document (Certificate) proving it.
Full Answer
B.To issue and verify digital certificates, binding a public key to an identity.✓ Correct
B
A Certificate Authority (CA) is a trusted entity that issues digital certificates. These certificates verify that a specific public key belongs to a specific entity (person, organization, server), enabling trust in PKI.
Common mistakes
Thinking the CA stores private keys (Escrow does that, not CA).
Practice the full CPA ISC Practice Exam
82 questions · hints · full answers · grading
More questions from this exam
Q01A CPA is performing a risk assessment for a client that uses a public cloud provider for its core...HardQ02During a walkthrough of a client's change management process, the auditor notes that developers h...HardQ03A service organization provides a real-time transaction processing platform. The service level ag...HardQ04An auditor is reviewing a SQL query used by the finance team to generate a report of all sales tr...HardQ05A healthcare clearinghouse is preparing for a SOC 2® engagement. They utilize a private cloud dep...Hard