CompTIA Security+ (SY0-501) — Question 356

A security specialist is notified about a certificate warning that users receive when using a new internal website. After being given the URL from one of the users and seeing the warning, the security specialist inspects the certificate and realizes it has been issued to the IP address, which is how the developers reach the site.
Which of the following would BEST resolve the issue?

Answer options

• A. OSCP
• B. OID
• C. PEM
• D. SAN

Correct answer: A

Explanation

The correct answer is A, OSCP, which stands for Online Certificate Status Protocol. This protocol allows clients to check the revocation status of a certificate dynamically, helping to ensure that the certificate is valid and trusted. The other options, OID (Object Identifier), PEM (Privacy-Enhanced Mail), and SAN (Subject Alternative Name), do not directly address the certificate warning issue in this context.