CompTIA Security+ (SY0-501) — Question 118

A security administrator receives notice that a third-party certificate authority has been compromised, and new certificates will need to be issued.
Which of the following should the administrator submit to receive a new certificate?

Answer options

• A. CRL
• B. OSCP
• C. PFX
• D. CSR
• E. CA

Correct answer: D

Explanation

The correct answer is D, CSR (Certificate Signing Request), which is required to request a new certificate from a certificate authority. The other options are not suitable: A (CRL) is a Certificate Revocation List that details revoked certificates, B (OSCP) is an Online Certificate Status Protocol for checking certificate status, C (PFX) is a file format for storing private keys and certificates, and E (CA) refers to the certificate authority itself.