In PKI revocation mechanisms, which statement is true?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $24.99Unlock all

Prepare for the Navy IT Communications Part 5 Test. Study effectively with multiple-choice questions, detailed explanations, and expert tips. Ace your exam with confidence!

Multiple Choice

In PKI revocation mechanisms, which statement is true?

Explanation:
In PKI revocation, you verify whether a certificate is still trusted by checking either a published CRL or an OCSP response. CRLs are lists of revoked certificates that a CA periodically publishes, which you can download and inspect offline. OCSP, on the other hand, gives a real-time status by querying a responder about a specific certificate. Because deployments vary, many systems use both approaches or choose one based on needs such as offline verification, bandwidth, or real-time requirements. That flexibility is why the statement that both CRLs and OCSP are used to verify revocation status depending on system configuration is the accurate one. It’s not correct to say CRLs are deprecated, and OCSP isn’t the only method used in all environments.

In PKI revocation, you verify whether a certificate is still trusted by checking either a published CRL or an OCSP response. CRLs are lists of revoked certificates that a CA periodically publishes, which you can download and inspect offline. OCSP, on the other hand, gives a real-time status by querying a responder about a specific certificate. Because deployments vary, many systems use both approaches or choose one based on needs such as offline verification, bandwidth, or real-time requirements. That flexibility is why the statement that both CRLs and OCSP are used to verify revocation status depending on system configuration is the accurate one. It’s not correct to say CRLs are deprecated, and OCSP isn’t the only method used in all environments.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy