Certified Information Systems Auditor (CISA) — Question 1135

In a public key cryptographic system, which of the following is the PRIMARY requirement to address the risk of man-in-the-middle attacks through spoofing?

Answer options

• A. Strong encryption algorithms
• B. Kerberos authentication
• C. Registration authority
• D. Certificate authority (CA)

Correct answer: D

Explanation

The correct answer is D, as a Certificate Authority (CA) issues digital certificates that verify the authenticity of public keys, thus preventing spoofing. Options A and B relate to securing communications but do not specifically address the identification and verification needed to prevent man-in-the-middle attacks. Option C involves the registration process but does not safeguard against the risks posed by such attacks.