Exam SY0-601 topic 1 question 70 discussion

The question mentions one trusted company, "centralized", it can not be Blockchain which is a "de-centralized" technology.

A. PKI (Public Key Infrastructure) is the best solution to adopt as it provides the means to securely issue, manage, and revoke digital certificates used to verify the identity of users and systems. PKI is commonly used to secure transactions and provide secure communication between entities, making it a suitable solution for the described scenario.

PKI (Public Key Infrastructure) is the best solution for deploying a trusted mechanism that can register and issue artifacts used for signing, encrypting, and decrypting transaction files securely. PKI is a set of policies, procedures, hardware, software, and encryption technologies that enable secure communications and authentication over a network. It relies on public and private key pairs to provide authentication, data integrity, and non-repudiation, making it suitable for securely validating transactions and ensuring the authenticity and confidentiality of data exchanged between business partners.

PKI (Public Key Infrastructure) is the best solution to adopt in this scenario. PKI is a security mechanism that uses asymmetric encryption and digital certificates to establish the authenticity, integrity, and confidentiality of electronic transactions. It provides a framework for generating, managing, and distributing digital certificates, which are used to verify the identity of users and entities involved in transactions.

Blockchain sucks at everything except sucking, and the concept needs to be kicked out of CompTIA as it's a terrible technology.

Based on the requirements described in the scenario, the BEST solution to adopt would be PKI, or Public Key Infrastructure. PKI is a system that uses a combination of public and private keys to provide secure communication over an insecure network. It uses digital certificates, which are issued by a trusted third party, to authenticate the identities of users and devices. These certificates can be used to sign, encrypt, and decrypt transactions, ensuring their confidentiality and integrity. In the scenario, one company is responsible for deploying a trusted solution that will register and issue artifacts used to sign, encrypt, and decrypt transaction files. PKI is a well-established and widely used technology for this purpose, and it meets the requirements described in the scenario. Blockchain, SAML, and OAuth are all useful technologies in their own right, but they may not be the best fit for the scenario described. Blockchain, for example, is more commonly used for secure distributed ledgers rather than transaction signing and encryption. SAML and OAuth are used more for authentication and authorization rather than encryption and decryption. Therefore, PKI is the BEST solution to adopt in this scenario

The main reason this is not blockchain is that blockchain is all about transparency. The transaction record is visible to all, and can be verified by the hash. Blockchain is not used to encrypt or decrypt anything.

A. PKI (Public Key Infrastructure) is the best solution to adopt in this case. PKI is a system that uses digital certificates and public key cryptography to secure communications and transactions. With PKI, one company can act as a Certificate Authority (CA), issuing digital certificates that can be used to sign, encrypt, and decrypt transaction files. This provides a trusted mechanism for validating transactions securely between business partners. Blockchain, SAML, and OAuth are all useful technologies for certain security scenarios, but they may not be the best fit for this particular use case.

 PKI (Public Key Infrastructure) • Combining asymmetric cryptography with symmetric cryptography along with the hashing and digital certificates, giving us hybrid cryptography. Straight from the CompTIA study guide

Answer is PKI. PKI involves one trusted third-party or middleman which is the company. Blockchain is a decentralized or distributed system. I think some people lean towards Blockchian as the answer due to "valid transaction" being mentioned which I understand but I will go with "A - PKI"

PKI. "register and issue artifacts used to sign, encrypt, and decrypt transaction files" - for PKI this artifact is a digital certificate. what artifact does the blockchain "register" and "issue" that does this?

I have to go with A: PKI. Ref the following: https://docs.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server-2012-r2-and-2012/dn786417(v=ws.11)

PKI seems like it

Blockchain

Blockchain is the best for transactions