IBM Security Access Manager V9.0 Deployment — Question 19
An attacker has compromised the private key associated with a certificate.
Which two methods can be used to ensure that certificates have not been revoked by the Certification authority that issued it? (Choose two.)
Answer options
- A. Public Key Information
- B. Online Status Certificate Protocol
- C. Online Certificate Status Protocol
- D. Certificate Rejection List located in LDAP
- E. Certificate Revocation List located in LDAP
Correct answer: A, E
Explanation
The correct answers are A and E. Public Key Information can be used to check the status of a certificate, while the Certificate Revocation List (CRL) located in LDAP provides a list of revoked certificates. Options B and C are incorrect as they refer to protocols that may not be universally available or applicable, and option D is not a standard method for checking certificate revocation.