LPIC-3 Exam 303 (Security) — Question 6

Which of the following practices are important for the security of private keys? (Choose TWO correct answers.)

Answer options

• A. Private keys should be created on the systems where they will be used and should never leave them.
• B. Private keys should be uploaded to public key servers.
• C. Private keys should be included in X509 certificates.
• D. Private keys should have a sufficient length for the algorithm used for key generation.
• E. Private keys should always be stored as plain text files without any encryption.

Correct answer: C, D

Explanation

The correct answers, C and D, emphasize the need for private keys to be part of X509 certificates for secure identification and to have sufficient length to withstand cryptographic attacks. Options A, B, and E are incorrect as they either suggest insecure practices, like uploading to public servers or storing in plain text, or misstate the generation location of private keys.