Digital Certificates and PKI

Questions and Answers

What is the primary purpose of a digital certificate?

To authenticate users through biometric data

To establish the identity of users and electronic assets (correct)

To decrypt sensitive information

To encrypt online transactions

What is the role of a certification authority (CA) in digital certificates?

To issue digital certificates to users

To decrypt encrypted data

To manage digital certificates for a company

To verify a user's identity and store information in a CA server (correct)

What is the main benefit of high-availability computing in online transaction processing?

To minimize downtime and ensure continuous availability (correct)

To increase the speed of online transactions

To reduce downtime to zero

To reduce the cost of online transactions

What is the primary concern for cloud computing security?

Tracking unauthorized activities

What is a key aspect of ensuring software quality?

Using software metrics for objective assessments

What is the primary goal of mobile device management tools in mobile security?

To authorize and inventory mobile devices

What is the purpose of a walkthrough in software development?

To review the specification or design document

What is the main benefit of using Recovery-Oriented Computing?

To minimize downtime and recover quickly from crashes

What type of attack involves redirecting users to a fake website, even if they type in the correct URL?

Pharming

What type of computer crime involves stealing personal information to impersonate someone else?

Identity theft

What type of threat originates from within an organization, often due to sloppy security procedures or user lack of knowledge?

Internal threats

What type of attack involves setting up fake Wi-Fi networks to steal sensitive information?

Evil twins

What is the term for tricking employees into revealing their passwords by pretending to be legitimate members of the company?

Social engineering

What type of crime involves fraudulent clicks on online ads?

Click fraud

What type of security challenge is associated with the use of fixed Internet addresses with permanent connections to the Internet?

Vulnerability to hacking

What is a potential security risk associated with the use of Wi-Fi networks?

Easy penetration by intruders using sniffer programs

What is a type of security challenge that involves unauthorized changes to a system?

Unauthorized change

What is a potential security risk associated with the use of e-mail attachments and file sharing?

Transmission of malware or viruses

What is a type of security challenge that involves the use of radio frequency bands?

Wireless security challenge

What is a potential security risk associated with the use of IM messages?

Lack of security, making them easily interceptable

What is a type of security challenge that involves the use of rogue access points?

Wireless security challenge

What is a potential security risk associated with the size of the Internet?

Abuses can have a wide impact

Study Notes

Digital Certificates and Public Key Infrastructure

• Digital certificates are data files used to establish the identity of users and electronic assets for online transactions protection.
• Certification Authorities (CAs) validate a user's identity, store information, and generate encrypted digital certificates containing owner ID information and a copy of the owner's public key.
• Public Key Infrastructure (PKI) uses public key cryptography with a CA, widely used in e-commerce.

Ensuring System Availability

• Online transaction processing requires 100% availability with no downtime.
• Fault-tolerant computer systems contain redundant hardware, software, and power supply components for continuous service.
• High-availability computing minimizes downtime and helps recover quickly from crashes.
• Recovery-oriented computing designs systems that recover quickly with capabilities to pinpoint and correct faults.

Controlling Network Traffic

• Deep Packet Inspection (DPI) is used for blocking video and music.
• Managed security service providers (MSSPs) outsource security services.

Security Issues for Cloud Computing and Mobile Digital Platforms

• Cloud computing is highly distributed, making it difficult to track unauthorized activities.
• Cloud users should ask for proof of security and privacy procedures, including encryption and service level agreements (SLAs).
• Mobile platforms require mobile device management tools, data loss prevention technology, mobile security policies, encryption, BYOD, and mobile protective software products.

Ensuring Software Quality

• Software metrics provide objective assessments of a system in the form of quantified measurements.
• Early and regular testing, walkthroughs, and debugging processes eliminate errors.

Security Challenges and Vulnerabilities

• The architecture of a Web-based application presents security challenges and vulnerabilities.
• Information systems are vulnerable due to internet openness, fixed internet addresses, e-mail attachments, file downloading, and sharing.
• Wireless security challenges include radio frequency bands, SSIDs, rogue access points, and Wi-Fi security challenges.

Hackers and Computer Crime

• Types of computer crime include identity theft, phishing, evil twins, theft of personal information, and hacking.
• Internal threats often originate inside an organization due to inside knowledge, sloppy security procedures, user lack of knowledge, and social engineering.

Description

Learn about digital certificates, Certification Authorities, and Public Key Infrastructure in online transactions and e-commerce.