New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

ISC2 CAP Exam - Topic 3 Question 77 Discussion

Actual exam question for ISC2's CAP exam
Question #: 77
Topic #: 3
[All CAP Questions]

Which of the following is correct?

Show Suggested Answer Hide Answer
Suggested Answer: A

by Edna at Dec 27, 2023, 07:44 AM

Limited Time Offer

25%

Off

Get Premium CAP Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Arthur
3 months ago
Really? I had no idea it was just the public key!
upvoted 0 times
...
Maybelle
3 months ago
D is definitely wrong, browsers have validation mechanisms.
upvoted 0 times
...
Marylou
4 months ago
Wait, I thought it was both keys? C seems plausible.
upvoted 0 times
...
Lynette
4 months ago
Totally agree, A is misleading.
upvoted 0 times
...
Tawanna
4 months ago
B is correct! Browsers use public keys for validation.
upvoted 0 times
...
Veronique
4 months ago
I don't think D is correct either, since browsers definitely have a way to validate TLS certificates, right?
upvoted 0 times
...
Hollis
4 months ago
I feel like option A is wrong because private keys shouldn't be in the browser, but I can't recall the exact details.
upvoted 0 times
...
Anissa
4 months ago
I remember practicing a question about how browsers validate certificates, and I think it was about public keys being stored in the browser.
upvoted 0 times
...
Wenona
5 months ago
I think the browser uses public keys from CAs to validate TLS certificates, but I'm not entirely sure if it's just the public key or something else.
upvoted 0 times
...
Lelia
5 months ago
This is a good question to test our understanding of TLS certificate validation. I'm pretty confident the browser uses the public keys of the CAs, not the private keys. I'll mark option B as my answer.
upvoted 0 times
...
Shaniqua
5 months ago
I'm a bit confused on this one. I know the browser has some way to validate the certificate, but I'm not sure if it's using the public or private keys. I'll have to review my notes on this.
upvoted 0 times
...
Camellia
5 months ago
Okay, I've got this. The browser uses the public keys of the CAs to verify the TLS certificate, not the private keys. Option B is the correct answer.
upvoted 0 times
...
Helaine
5 months ago
Hmm, this seems like a tricky one. I'll need to think through the details of how TLS certificates are validated in the browser.
upvoted 0 times
...
Veronica
5 months ago
Ah, I see what they're asking for. Option A looks like the best choice - using a variable for the account number in the selector should do the trick.
upvoted 0 times
...
Karrie
5 months ago
Okay, let's see. CEF is the Common Event Format, which is a widely used open standard. IIS and W3C are more specific to Microsoft web servers. TLA doesn't ring a bell, so I'm going to rule that one out. I think CEF is the best choice here.
upvoted 0 times
...
Tommy
5 months ago
Hmm, I'm a bit unsure about this one. The question is asking what the project manager should do, but the options don't seem directly related to that. I might need to think through the agile principles and the product owner's needs to determine the best approach.
upvoted 0 times
...
Jess
9 months ago
Alright, let's keep this exam focused, folks. No need to get too carried away with private key jokes.
upvoted 0 times
...
Daniel
10 months ago
I'm glad the browser doesn't have to carry around the private keys of all CAs. That would be a lot of baggage!
upvoted 0 times
Meaghan
8 months ago
C) The browser contains both the public and private key of all known Certifying Authorities (CA) and based on that it is able to differentiate between a valid and an invalid TLS Certificate
upvoted 0 times
...
Devorah
8 months ago
B) The browser contains the public key of all known Certifying Authorities (CA) and based on that it is able to differentiate between a valid and an invalid TLS Certificate
upvoted 0 times
...
Dudley
9 months ago
C) The browser contains both the public and private key of all known Certifying Authorities (CA) and based on that it is able to differentiate between a valid and an invalid TLS Certificate
upvoted 0 times
...
Bernardo
9 months ago
A) The browser contains the private key of all known Certifying Authorities (CA) and based on that, it differentiates between a valid and an invalid TLS Certificate
upvoted 0 times
...
Lennie
9 months ago
B) The browser contains the public key of all known Certifying Authorities (CA) and based on that it is able to differentiate between a valid and an invalid TLS Certificate
upvoted 0 times
...
Catalina
9 months ago
A) The browser contains the private key of all known Certifying Authorities (CA) and based on that, it differentiates between a valid and an invalid TLS Certificate
upvoted 0 times
...
...
Trinidad
10 months ago
Option D is clearly wrong. The browser definitely has a mechanism to validate TLS certificates, otherwise the whole internet would be a security nightmare.
upvoted 0 times
Pamella
9 months ago
Option D is clearly wrong. The browser definitely has a mechanism to validate TLS certificates, otherwise the whole internet would be a security nightmare.
upvoted 0 times
...
Viola
9 months ago
C) The browser contains both the public and private key of all known Certifying Authorities (CA) and based on that it is able to differentiate between a valid and an invalid TLS Certificate
upvoted 0 times
...
Louvenia
9 months ago
B) The browser contains the public key of all known Certifying Authorities (CA) and based on that it is able to differentiate between a valid and an invalid TLS Certificate
upvoted 0 times
...
Shalon
10 months ago
A) The browser contains the private key of all known Certifying Authorities (CA) and based on that, it differentiates between a valid and an invalid TLS Certificate
upvoted 0 times
...
...
Fernanda
10 months ago
Yes, that's correct. The browser uses the public key to validate the TLS Certificate.
upvoted 0 times
...
Margarett
10 months ago
I hope the exam doesn't ask me to generate a private key for the entire internet! That would be a real headache.
upvoted 0 times
...
Mirta
10 months ago
I agree with Ira, the browser contains the public key of all known CAs.
upvoted 0 times
...
Ira
10 months ago
I think the answer is B.
upvoted 0 times
...
Queen
10 months ago
I think it's C because having both the public and private key would allow the browser to validate the TLS Certificate more securely.
upvoted 0 times
...
Yun
10 months ago
Why do you think it's C?
upvoted 0 times
...
Katina
11 months ago
Option B is the correct answer. The browser contains the public keys of known CAs, not the private keys, which are kept secure by the CAs.
upvoted 0 times
Melvin
9 months ago
Exactly, it's important for secure communication online
upvoted 0 times
...
Paul
9 months ago
So the browser uses the public keys to validate the TLS Certificate
upvoted 0 times
...
Julianna
10 months ago
That makes sense, the private keys are kept secure by the CAs
upvoted 0 times
...
Shawnda
10 months ago
I think the correct answer is B) The browser contains the public key of all known Certifying Authorities (CA) and based on that it is able to differentiate between a valid and an invalid TLS Certificate
upvoted 0 times
...
...
Queen
11 months ago
I disagree, I believe the correct answer is C.
upvoted 0 times
...
Yun
11 months ago
I think the answer is B.
upvoted 0 times
...

Save Cancel