CompTIA Linux+ XK0-006 (V8) Practice Question

The correct choice is a commercial certificate from a trusted Certificate Authority (CA). For a public-facing e-commerce site handling financial data, establishing trust is paramount. Commercial CAs offer different levels of validation, including Organization Validated (OV) and Extended Validation (EV) certificates. These require a thorough vetting of the organization, providing a higher level of assurance to visitors compared to domain-only validation. Commercial certificates are universally trusted by all browsers, preventing security warnings that would deter customers. They also often come with financial warranties, which adds another layer of security assurance for the business.

A self-signed certificate is unsuitable because it is not signed by a trusted CA, which causes browsers to display prominent security warnings, eroding customer trust. A no-cost certificate, while valid and trusted by browsers for encryption, typically only offers Domain Validation (DV). This doesn't provide the organizational vetting that is crucial for a high-trust e-commerce platform. A certificate from an internal corporate CA is only intended for internal use and would not be trusted by the public or their browsers, resulting in security errors for external visitors.