17 Aug Practice Test Question – Certificate Control
Preparing for your next security certification exam? After trying your hand at this practice test question, join the FREE CertMike Study Group for the CISSP, Security+, CySA+, PenTest+, CISM+ or SSCP certification to receive new questions each week. You’ll also receive free access to my customized study strategies.
Ray is configuring a highly secure web application that is being used by a limited number of users. He would like to apply a client-side control that informs the client browser exactly what certificate to expect from the server. Which one of the following controls meets his requirement?
A. Certificate chaining
B. Certificate stapling
C. Certificate pinning
D. Certificate folding
Correct Answer: C
Certificate pinning is a control that provides the client browser with instructions about the certificate(s) that it may accept from a specific web server. Certificates not matching the pinned certificate are rejected.