Build fluency in the vocabulary of certificate transparency log.
0 / 5 completed
1 / 5
A teammate explains that every publicly trusted TLS certificate a certificate authority issues gets submitted to a public, append-only, cryptographically verifiable log, so a domain owner or a browser can detect a certificate that was issued for that domain without the owner's knowledge, instead of relying solely on certificate authorities to never make a mistake or get compromised. What is being described?
A certificate transparency log is exactly what is described here. A DNS zone transfer is an unrelated concept about replicating name server records. Understanding a certificate transparency log is exactly why it comes up so often in real engineering discussions of this kind of problem.
2 / 5
During a design review, the team adopts certificate transparency monitoring, specifically to gain a concrete benefit. Which capability does this provide?
Certificate transparency here provides detectable, publicly auditable certificate issuance. Trusting every certificate authority with no independent public record is the alternative this avoids. This behavior is exactly why certificate transparency monitoring is favored in this kind of scenario.
3 / 5
In a code review, a dev notices a system relies on trusting every certificate authority to correctly verify domain ownership before issuing a certificate, with no independent, public record a domain owner could check, instead of monitoring certificate transparency logs. What does this represent?
This is a missed certificate-transparency-opportunity, since monitoring the logs would let a domain owner publicly detect a mis-issued certificate. A cache eviction policy is an unrelated concept about discarded cache entries. This pattern is exactly the kind of gap a reviewer flags once the tradeoffs are understood.
4 / 5
An incident report shows a domain owner didn't discover for months that a certificate authority had mistakenly issued a valid certificate for their domain to an unrelated party, because there was no public, monitorable record of certificate issuance for that domain. What practice would prevent this?
Monitoring certificate transparency logs for the domain so a mistakenly or maliciously issued certificate is caught quickly, instead of relying solely on certificate authorities never making a mistake. Continuing the prior approach regardless of the risk it has already caused is exactly what led to the incident described here. This fix is the standard remedy once the root cause is confirmed.
5 / 5
During a PR review, a teammate asks why the team monitors certificate transparency logs instead of relying purely on certificate authority trust. What is the reasoning?
Certificate transparency trades the overhead of public log submission for the ability to publicly detect a mis-issued certificate, while relying purely on authority trust leaves a mis-issued certificate undetectable until real damage is done. This is exactly why certificate transparency is favored in scenarios that call for it, while the alternative remains acceptable in simpler cases that don't.
What does the "Certificate transparency log Vocabulary" vocabulary exercise cover?
This exercise tests real IT vocabulary related to certificate transparency log vocabulary through 5 multiple-choice questions, each built from realistic workplace sentences rather than abstract definitions.
Is this vocabulary exercise free to use?
Yes. Every exercise on CoderSlingo, including this one, is completely free — no account, sign-up, or payment required.
How many questions does this exercise have?
This exercise has 5 questions. Each one shows a real-world sentence or scenario with multiple-choice options and an explanation once you answer.
What happens after I answer a question?
You'll see immediate feedback showing whether your answer was correct, along with a short explanation of why — then a button to move to the next question, and a full results screen at the end.
Can I retry the exercise if I get questions wrong?
Yes. Once you reach the results screen, click "Try again" to reset your answers and go through the exercise from the start as many times as you like.
Do I need to create an account to take this exercise?
No account is needed. Your answers are scored in your browser during the session — nothing is saved to a server, so you can jump straight in.
Is my progress saved if I leave the page?
No — progress within an exercise resets if you navigate away or reload. Each exercise is short enough to complete in a few minutes in one sitting.
Are these vocabulary exercises connected to other topics?
Yes — browse the full vocabulary exercises hub to find related modules covering adjacent IT topics and roles.
How is this different from reading a glossary or blog article?
Exercises like this one are active recall drills — you have to choose the correct term or phrasing yourself, which builds retention faster than passively reading a definition.
Where can I find more vocabulary exercises?
Browse the full Vocabulary exercises hub for hundreds of modules covering Agile, DevOps, security, databases, architecture, and more — organised by IT role and skill.