CompTIA Security Plus Mock Test Q1128

A small company wants to employ PKI. The company wants a cost effective solution that must be simple and trusted. They are considering two options: X.509 and PGP. Which of the following would be the BEST option?

A. PGP, because it employs a web-of-trust that is the most trusted form of PKI.
B. PGP, because it is simple to incorporate into a small environment.
C. X.509, because it uses a hierarchical design that is the most trusted form of PKI.
D. X.509, because it is simple to incorporate into a small environment.

Correct Answer: B
Section: Cryptography

Explanation:
PGP easier to use and setup than the corporate PKI model, but it is also less robust when it comes to issues like authentication and trust. However, the full benefits of public key
cryptography are used.

Incorrect Answers:
A: The web of trust method used by PGP forces users to trust someone’s entire keyring regardless of whether the user only really trusts the owner of the keyring. It is therefore not the
most trusted form of PKI.
C: Because of its hierarchical design, X.509 is not a simple, cost effective solution.
D: Because of its hierarchical design, X.509 is not a simple, cost effective solution.

References:
http://www.math.ucsd.edu/~crypto/students/PGP.html
https://en.wikipedia.org/wiki/X.509