PKI and Digital Certificates Quiz

The role of Certificate Authority (CA) in defending against MITM (Man-in-the-Middle) attack is to issue digital certificates to entities, ensuring the authenticity and integrity of their public keys. This helps prevent an attacker from intercepting communication between two parties and impersonating one of them.

The public key needs to be trusted to ensure the security of communication. Such trust is implemented through the use of digital certificates, which are issued by Certificate Authorities (CA) and contain the public key along with information about the entity to which it belongs, digitally signed by the CA to verify its authenticity.

The important information contained in the certificates for amazon.com, google.com, and uts.edu.au includes the entity's public key, the entity's domain name, the validity period of the certificate, the digital signature of the Certificate Authority (CA), and the certificate's serial number.

Public Key Infrastructure (PKI) provides a framework for managing digital certificates and public-private key pairs. It facilitates secure communication, authentication, and encryption by establishing trust in the public keys of entities and ensuring the integrity and confidentiality of data transmission.

Cryptographic Function, including both symmetric and asymmetric cryptography, contributes to cybersecurity by enabling secure data transmission, confidentiality, integrity, and authentication. Symmetric cryptography ensures confidentiality and integrity, while asymmetric cryptography provides secure key exchange and digital signatures, enhancing overall cybersecurity.