A security engineer is configuring a system that requires the X.509 certificate information to be pasted into a form field in Base64 encoded format to import it into the system. Which of the following certificate formats should the engineer use to obtain the information in the required format?
A. PFX
B. PEM
C. DER
D. CER
B or C — PEM for UNIX/LINUX or DER for Windows — essentially same file contents.
PEM – BASE64 for X509 certificate import – not fully encrypted – contains public key & more – unix
PKCS7 – used by Java and supported by Window – Does not contain private key material.
PKCS12 – provides enhanced security versus the plain-text PEM format – can contain private key
DER – exported certificate file – a binary version of the base64-encoded PEM file – for Windows
CSR – certificate request
CRT & CER – certificate files – may contain signature of a CA – can be PEM or DER format
KEY – the private key file
B the question states “to be pasted into a form” –so no encryption.