CompTIA Security+ SY0-601 Study Guide Rated 100% Correct!!

What type of certificate does a CA have? - Root Certificate; used to sign keys If I am going to use a CA internally, what type of CA should I use? - Private CA If I want to carry out a B2B activity with third-party companies or sell products on the web, what type of certificate should I use? - Public CA Why would I make my CA offline when not in use? - Military, Security, or Banking Organizations; preventing data from being compromised. Who signs X.509 certificates? - Central Authorities (CA) Who builds the CA or intermediate authorities? - Architect What can I use to prevent my CA from being compromised and fraudulent certificates being issued? - Certificate Pinning If two entities what to set up a cross-certification, what must they set up first? - Root CAs using a bridge trust model What type of trust model does PGP use? - Web of Trust How can I tell if my certificate is valid? - Certificate Revocation List (CRL) If the CRL is going slow, what should I implement? -Online Certification Status Protocol (OCSP)Explain certificate stapling/OCSP stapling - Web servers use an OCSP for faster authentication bypassing the CRL