CompTIA Security Plus Mock Test Q450

Certificates are used for: (Select TWO).

A. Client authentication.
B. WEP encryption.
C. Access control lists.
D. Code signing.
E. Password hashing.

Correct Answer: A,D
Section: Compliance and Operational Security

Certificates are used in PKI to digitally sign data, information, files, email, code, etc. Certificates are also used in PKI for client authentication.

Incorrect Answers:
B: Wired Equivalent Privacy (WEP) encryption is used with TKIP which placed a 128-bit wrapper around the WEP encryption and is based on the MAC address of the host device and
the serial number of the packet.
C: Access control lists are used to allow individual and highly controllable access to resources in a network.
E: Hashing refers to the hash algorithms used in cryptography. It is used to derive a key mathematically from a message.

Dulaney, Emmett and Chuck Eastton, CompTIA Security+ Study Guide, 6th Edition, Sybex, Indianapolis, 2014, pp. 156, 278, 281