CISM Certified Information Security Manager – Question0483

The MAIN reason for deploying a public key infrastructure (PKI) when implementing an information security program is to:

A.
ensure the confidentiality of sensitive material.
B. provide a high assurance of identity.
C. allow deployment of the active directory.
D. implement secure sockets layer (SSL) encryption.

Correct Answer: B

Explanation:

Explanation:
The primary purpose of a public key infrastructure (PKI) is to provide strong authentication. Confidentiality is a function of the session keys distributed by the PKI. An active directory can use PKI for authentication as well as using other means. Even though secure sockets layer (SSL) encryption requires keys to authenticate, it is not the main reason for deploying PKI.