Security+ Key Point
If you’re planning to take the Security+ exam, you might like to remember this key point.
CAs revoke certificates for several reasons such as when the private key is compromised or the CA is compromised. The certificate revocation list (CRL) includes a list of revoked certificates and is publicly available. An alternative to using a CRL is the Online Certificate Status Protocol (OCSP), which returns answers such as good, revoked, or unknown. OCSP stapling appends a digitally signed OCSP response to a certificate.
This is one of the Remember This blocks from the CompTIA Security+: Get Certified Get Ahead: SY0-501 Study Guide. As a study habit, I encourage readers to repeat these key points to themselves as often as possible. The more you repeat the information, the more likely you are to remember it when you take the exam.
The CompTIA Security+: Get Certified Get Ahead: SY0-501 Study Guide provides additional information needed to fully understand this key point.
Also, the full text of the top selling CompTIA Security+: Get Certified Get Ahead: SY0-501 Study Guide is available in the Full Security+ Course within an online course format.
Bookmark this page and check it next week for another Security+ Key Point. All of the Security+ key points are available as online flashcards here.