{"id":795,"date":"2021-01-17T05:39:53","date_gmt":"2021-01-16T18:06:19","guid":{"rendered":"https:\/\/exampracticetests.com\/ISC\/SSCP\/systems-security-certified-practitioner-sscp-question0787\/"},"modified":"2021-01-17T05:44:41","modified_gmt":"2021-01-17T05:44:41","slug":"systems-security-certified-practitioner-sscp-question0787","status":"publish","type":"post","link":"https:\/\/exampracticetests.com\/ISC\/SSCP\/systems-security-certified-practitioner-sscp-question0787\/","title":{"rendered":"Systems Security Certified Practitioner &#8211; SSCP &#8211; Question0787"},"content":{"rendered":"<div class=\"question\">What can be defined as a data structure that enumerates digital certificates that were issued to CAs but have been invalidated by their issuer prior to when they were scheduled to expire? <br \/><strong><br \/>A.<\/strong> Certificate revocation list <br \/><strong>B.<\/strong> Certificate revocation tree <br \/><strong>C.<\/strong> Authority revocation list <br \/><strong>D.<\/strong> Untrusted certificate list<\/div>\n<p><\/p>\n<style> .hidden-div{ display:none } <\/style>\n<p>\t\t\t\t\t\t\t<button onclick=\"getElementById('hidden-div').style.display = 'block'\"> Show Answer <\/button> <button onclick=\"getElementById('hidden-div').style.display = 'none'\">Hide Answer<\/button><\/p>\n<div class=\"hidden-div\" id=\"hidden-div\"><span style=\"\"><\/p>\n<div class=\"answer\">Correct Answer: <strong>C<\/strong><\/div>\n<p><strong>Explanation:<\/strong> <\/p>\n<div class=\"explanation\">\nThe Internet Security Glossary (RFC2828) defines the Authority Revocation List (ARL) as a data structure that enumerates digital certificates that were issued to CAs but have been invalidated by their issuer prior to when they were scheduled to expire.<br \/>\nDo not to confuse with an ARL with a Certificate Revocation List (CRL). A certificate revocation list is a mechanism for distributing notices of certificate revocations. The question specifically mentions &#8220;issued to CAs&#8221; which makes ARL a better answer than CRL. <a href=\"http:\/\/rfclibrary.hosting.com\/rfc\/rfc2828\/rfc2828-29.asp\" title=\"External link\" rel=\"nofollow noopener\" target=\"_blank\">http:\/\/rfclibrary.hosting.com\/rfc\/rfc2828\/rfc2828-29.asp<\/a><br \/>\n$ certificate revocation list (CRL)<br \/>\n(I) A data structure that enumerates digital certificates that have been invalidated by their issuer prior to when they were scheduled to expire. (See: certificate expiration, X.509 certificate revocation list.)<br \/>\n<a href=\"http:\/\/rfclibrary.hosting.com\/rfc\/rfc2828\/rfc2828-17.asp\" title=\"External link\" rel=\"nofollow noopener\" target=\"_blank\">http:\/\/rfclibrary.hosting.com\/rfc\/rfc2828\/rfc2828-17.asp<\/a> $ authority revocation list (ARL)<br \/>\n(I) A data structure that enumerates digital certificates that were issued to CAs but have been invalidated by their issuer prior to when they were scheduled to expire. (See: certificate expiration, X.509 authority revocation list.)<br \/>\nIn a few words: We use CRL&#8217;s for end-user cert revocation and ARL&#8217;s for CA cert revocation -both can be placed in distribution points.<\/div>\n<p><\/strong><\/span> <\/div>\n","protected":false},"excerpt":{"rendered":"<p>What can be defined as a data structure that enumerates digital certificates that were issued to CAs but have been invalidated by their issuer prior to when they were scheduled to expire? A. Certificate revocation list B. Certificate revocation tree C. Authority revocation list D. Untrusted certificate list Show Answer Hide Answer Correct Answer: C [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[1078,790,3],"class_list":["post-795","post","type-post","status-publish","format-standard","hentry","category-systems-security-certified-practitioner-sscp","tag-choices","tag-question-0787","tag-systems-security-certified-practitioner-sscp"],"_links":{"self":[{"href":"https:\/\/exampracticetests.com\/ISC\/SSCP\/wp-json\/wp\/v2\/posts\/795","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/exampracticetests.com\/ISC\/SSCP\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/exampracticetests.com\/ISC\/SSCP\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/exampracticetests.com\/ISC\/SSCP\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/exampracticetests.com\/ISC\/SSCP\/wp-json\/wp\/v2\/comments?post=795"}],"version-history":[{"count":1,"href":"https:\/\/exampracticetests.com\/ISC\/SSCP\/wp-json\/wp\/v2\/posts\/795\/revisions"}],"predecessor-version":[{"id":1871,"href":"https:\/\/exampracticetests.com\/ISC\/SSCP\/wp-json\/wp\/v2\/posts\/795\/revisions\/1871"}],"wp:attachment":[{"href":"https:\/\/exampracticetests.com\/ISC\/SSCP\/wp-json\/wp\/v2\/media?parent=795"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/exampracticetests.com\/ISC\/SSCP\/wp-json\/wp\/v2\/categories?post=795"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/exampracticetests.com\/ISC\/SSCP\/wp-json\/wp\/v2\/tags?post=795"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}