Certified Information Systems Security Professional (CISSP) — Question 64

Which of the following is the MOST common use of the Online Certificate Status Protocol (OCSP)?

Answer options

• A. To verify the validity of an X.509 digital certificate
• B. To obtain the expiration date of an X.509 digital certificate
• C. To obtain the revocation status of an X.509 digital certificate
• D. To obtain the author name of an X.509 digital certificate

Correct answer: C

Explanation

The correct answer is C because OCSP is specifically designed to check the revocation status of digital certificates, ensuring they are still valid for use. Option A, while related, focuses on validity rather than revocation. Options B and D are incorrect as they pertain to retrieving information that OCSP does not provide.