CompTIA Security+ (SY0-501) — Question 232
When generating a request for a new x.509 certificate for securing a website, which of the following is the MOST appropriate hashing algorithm?
Answer options
- A. RC4
- B. MD5
- C. HMAC
- D. SHA
Correct answer: D
Explanation
SHA is the most appropriate hashing algorithm for generating x.509 certificates due to its security and resistance to collisions. MD5 and RC4 are considered weak and vulnerable to attacks, while HMAC is a construction for creating a message authentication code, not a hashing algorithm suitable for this context.