The correct answer is C. Disreputable certificate authorities.
Disreputable certificate authorities (CAs) can undermine the public key infrastructure (PKI) system. PKI relies on trusted certificate authorities to issue and manage digital certificates that verify the identity of entities (such as websites). If a CA is compromised or behaves unethically, it can issue fraudulent certificates, leading to a breakdown in trust within the PKI system. This can result in security breaches, such as man-in-the-middle attacks, where attackers can impersonate legitimate entities.
While the other options describe potential security issues, the integrity and trustworthiness of certificate authorities are fundamental to the overall security of PKI.
Privacy for Technology book also mentions when DigiNotar, a Dutch CA owned by VASCO Data Security International, apparently issued a certificate for the domain name *.google.com. The problem is that DigiNotar didn’t issue the certificate to Google—it appears that it was issued by the government of Iran, which allegedly used the certificate to spy on Iranian citizens accessing Gmail and Google docs.
upvoted 3 times
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Sbowo
Highly Voted 2 years, 11 months agoSsourav
Most Recent 3 months, 2 weeks agoFayBab1
1 year agopipzz
2 years, 4 months ago