Systems Security Certified Practitioner (SSCP) — Question 114

A X.509 public key certificate with the key usage attribute "non repudiation" can be used for which of the following?

Answer options

• A. encrypting messages
• B. signing messages
• C. verifying signed messages
• D. decrypt encrypted messages

Correct answer: C

Explanation

The correct answer is C because a certificate with the 'non repudiation' attribute is specifically used to verify that a message has been signed by the owner of the corresponding private key. Options A and D are incorrect as they relate to encryption and decryption, which are not functions associated with non-repudiation. Option B is also incorrect because signing messages is the function of the private key, not the public key certificate.