CISSP – Information Systems Security Architecture Professional (ISSAP) — Question 75

Which of the following protocols is an alternative to certificate revocation lists (CRL) and allows the authenticity of a certificate to be immediately verified?

Answer options

Correct answer: C

Explanation

OCSP, or Online Certificate Status Protocol, is designed to provide real-time verification of a certificate's status, making it a suitable alternative to CRL. The other options, such as RSTP, SKIP, and HTTP, do not serve the purpose of certificate status verification and are used for different networking functions.