IS1 NetSec Newsletter Crossword Challenge #4 - AWS Certificate Manager

1234567891011121314151617181920212223242526272829
Across
  1. 2. Automated process for certificate renewal for DNS Validated ACM Certificates. (7+7)
  2. 5. Covers all the subdomains with a single certificate for a domain. (8+11)
  3. 10. A security standard to detect and prevent fraudulent SSL/TLS certificates. (11+12)
  4. 12. Repository of trusted certificates. (5+5)
  5. 17. A certificate issued to a specific user, device, or server for authentication. (3+6+11)
  6. 23. Certificate extension specifying if it's a CA or not. (5+11)
  7. 24. Encoding format for X.509 certificates. (13+8+5)
  8. 25. Certificate extension specifying the purposes for which the public key can be used. (8+3+5)
  9. 26. Top-level Authority in a certificate hierarchy. (4+2)
  10. 28. A protocol for checking the revocation status of certificates. (4)
  11. 29. It's a DNS record for aliasing one domain to another, often used for verification of domain in ACM. (9+4)
Down
  1. 1. Initial step in obtaining a digital certificate. (11+7+7)
  2. 3. Not the root, not the end, but a link between; in SSL's trust chain, this CA is seen. (12+2)
  3. 4. An API in AWS to initiate the process of obtaining an ACM Certificate. (7+11)
  4. 6. Locations where list of revoked certificates can be obtained. (3+12+6)
  5. 7. Sequence of certificates forming a trust path. (11+5)
  6. 8. A DNS record specifying which CAs are authorized to issue certificates for a domain. (13+9+13)
  7. 9. A list of certificates that have been revoked before their expiration date. (11+10+4)
  8. 11. An extension in a certificate allowing additional identities to be bound to the subject. (7+11+4)
  9. 13. An entity that issues and manages digital certificates. (11+9)
  10. 14. A cryptographic protocol for secure communication over a computer network, which falls under Layer-4 of the OSI Model. (9+5+8)
  11. 15. Certificate with a signature of authenticity, but unlike most, this one vouches for itself. (4+6+11)
  12. 16. Amazon's service for managing private certificates. (3+7+2)
  13. 18. AWS-Recommended verification method of a new ACM Certificate. (3+10)
  14. 19. A format for encoding SSL Certificates. (7+8+4)
  15. 20. Security mechanism ensuring a specific cryptographic key is associated with a particular certificate; a protective measure against man-in-the-middle attacks in the cybersecurity realm. (3+7)
  16. 21. A digital certificate that is no longer valid before its expiration date. (7+11)
  17. 22. Open-source toolkit for SSL/TLS. (4+3)
  18. 27. Trusted entity in certificate validation. (5+6)