[barelystayingsane]

First question: Can someone explain why my reasoning on this Becker question is wrong?

Which of the following is true regarding PKI?

a. PKI is intended for e-business use and is typically available through commercial certificate authorities.

b. PKI includes a “tree of trust” that’s checked each time a certificate is presented as proof of one’s identity.

c. PKI assumes asymmetric encryption to create legally-binding electronic documents.

d. PKI refers to the system and processes used to issue and manage asymmetric keys and digital certificates.

I knew the answer was d. just because it is the definition from the book that I memorized, but I didn’t necessarily understand why the others were incorrect. I suppose a. is incorrect because the PKI is the system that the certificate authority uses and it isn’t really made available to the user. Answer c. refers to digital signatures. But I don’t understand why b. is incorrect. The answer said something along the lines of “trees of trust” are associated with certificate authorities, not PKIs, but since PKIs are the system and processes for managing digital certificates and “trees of trust are checked each time a certificate is presented, why wouldn’t “trees of trust” be included in a PKI?

[barelystayingsane]

Second question: For purposes of the exam (i.e. very basic, high-level), is an application service provider (ASP) the same thing as someone who provides SaaS cloud computing?

[barelystayingsane]

bump

[barelystayingsane]

bump

[barelystayingsane]

bump

[barelystayingsane]

I guess these questions are too hard! Haha guess I'll email Becker.

[zissou90]

@barelystayingsane

Which of the following is true regarding PKI?

a. PKI is intended for e-business use and is typically available through commercial certificate authorities.

b. PKI includes a “tree of trust” that's checked each time a certificate is presented as proof of one's identity.

c. PKI assumes asymmetric encryption to create legally-binding electronic documents.

d. PKI refers to the system and processes used to issue and manage asymmetric keys and digital certificates.

a. is incorrect because Digital Certificates(NOT PKI) are intended for E-Business and are usually available through CA.

b. is incorrect because CAs (NOT PKI) maintain a tree of trust.

c. is incorrect because Digital signatures (NOT PKI) use asymmetric encryption to create legally binding electronic documents.

As to your second question, I read online that: Software offered using an ASP model is also sometimes called on-demand software or software as a service (SaaS).

Hope that helps and good luck on the exam!

B
A- 89
R-89
F- 79

[barelystayingsane]

Although I've already taken BEC, I'm still curious about the first question. Since PKIs are the system and processes for managing digital certificates and “trees of trust are checked each time a certificate is presented, why wouldn't “trees of trust” be included in a PKI? I realize that they're associated with CAs, but wouldn't they also be associated with PKIs? Just playing devil's advocate here…

[Author]

Replies