| Like what you see? Get it in one document for easy printing! |
Click Here!
Use coupon code "certiguide" to save 20%!
(Expires 2004/12/31) |
|
| Test yourself better with 300 extra Security+ questions! |
| Get It Here! |
|
|
4.5.2.2 Private Key Protection
A private key holder is responsible
for taking all adequate precautions to secure their primary key and
ensure that no one has access to it. This is important because
anyone who obtains a user’s private key can forge a message and
claim it was sent by that user, and can decrypt any sensitive communications
encrypted by that user’s public key.
This includes all the common precautions
you might expect, like:
- Not including the private key in email.
- Not exposing it in a readable environment.
- Not writing one’s PIN on the back of the
smartcard holding the key.
… and also involves educating
users about the potential for social engineering attempts to acquire
their private key, much as they are educated (we hope) not to give out
their network passwords.
| If you find CertiGuide.com useful, please consider making a small Paypal donation to help the site, using one of the buttons below. You can also donate a custom amount using the far right button (not less than $1 please, or PayPal gets most/all of your money!) In lieu of a larger donation, you may wish to consider buying an inexpensive PDF equivalent of the CertiGuide to Security+ from StudyExam4Less.com. (Use coupon code "certiguide" by December 31, 2004 to save 20%!) Thanks for your support! |
|
|
Home -
Table Of Contents - Contact Us
CertiGuide for Security+ (http://www.CertiGuide.com/secplus/) on CertiGuide.com
Version 1.0 - Version Date: November 15, 2004
Adapted with permission from a work created by Tcat Houser et al.
CertiGuide.com Version © Copyright 2004 Charles M. Kozierok. All Rights Reserved.
Not responsible for any loss resulting from the use of this site.
|
