A security architect must mitigate the risks from what is su

A security architect must mitigate the risks from what is su - CompTIA CAS-005

Question

A security architect must mitigate the risks from what is suspected to be an exposed, private cryptographic key. Which of the following is the BEST step to take?

Answers

correct

Revoke the certificate.
Inform all the users of the certificate.
Contact the company's Chief Information Security Officer.
Disable the website using the suspected certificate.
Alert the root CA.

Explanation

The correct answer is: A. Revoke the certificate.

If a private cryptographic key is suspected to be exposed, revoking the associated certificate is the most effective and immediate action to mitigate risks. Certificate revocation ensures:

The certificate is no longer trusted: Revocation informs browsers, systems, and applications to stop trusting the compromised certificate, preventing further misuse.
Security of communications: It reduces the risk of attackers using the exposed key for malicious purposes, such as impersonating the website or decrypting secure communications.

Revocation is handled by the Certificate Authority (CA), and the status is updated in Certificate Revocation Lists (CRLs) or Online Certificate Status Protocol (OCSP) responses.

Why the other options are incorrect:

Inform all the users of the certificate:

Incorrect: While informing users may be part of the response plan, it does not mitigate the risk of the compromised key being misused.

Contact the company's Chief Information Security Officer:

Incorrect: Informing the CISO is good practice, but it is not a mitigation step. The compromised certificate needs immediate action, which revocation provides.

Disable the website using the suspected certificate:

Incorrect: Disabling the website might disrupt services but does not stop the compromised certificate from being exploited elsewhere.

Alert the root CA:

Incorrect: While notifying the CA (Certificate Authority) is part of the revocation process, simply alerting the CA without taking the action to revoke the certificate is not sufficient to mitigate the risk.

View Full Course Content Try our Free Questions

No Payment Cards Needed

CompTIA SecurityX CAS-005 exam

Normally $60

$45/month

Subjects Included

CompTIA SecurityX CAS-005

Additional Features

Over 300 Practice Questions with Answers
Quizzes in every Lesson Provided
Detailed Analysis of Questions with Answers and Explanations
Detailed Notes with Chapters, Topics & Lessons
24/7 Live chat support
24/7 WhatsApp support
One Full Month Access

Get Started

View Other Pricing Plans

CompTIA Prep

CompTIA Cloud+ CV0-004

Start Course Prep

CompTIA Prep

CompTIA Server+ SK0-005

Start Course Prep

Easy way to pass your test within a week with prepsaret

You don’t need one month to study and pass your test.
With Prepsaret, it takes you a few days to grasp all the concepts needed to pass your exams

View Courses Offered