What is Public Key Infrastructure (PKI)?
D5 ยท Crypto ยท CompTIA Security+ SY0-701PKI (Public Key Infrastructure) is the complete framework โ hardware, software, policies, and standards โ used to create, distribute, manage, store, and revoke digital certificates and manage public-key encryption.
Key PKI components: CA (Certificate Authority), RA (Registration Authority), CRL (Certificate Revocation List), OCSP (Online Certificate Status Protocol), certificate repository.
Certificate lifecycle: issue โ distribute โ use โ renew/revoke.
Key PKI components: CA (Certificate Authority), RA (Registration Authority), CRL (Certificate Revocation List), OCSP (Online Certificate Status Protocol), certificate repository.
Certificate lifecycle: issue โ distribute โ use โ renew/revoke.
PKI underpins HTTPS, email signing (S/MIME), code signing, VPNs, and smart card auth. Know the difference between CRL (periodic list) and OCSP (real-time status check). OCSP stapling improves performance.