Key escrow is a cryptographic technique that enables storing copies of encryption keys with a trusted third party. A Recovery Agent (RA) is a trusted third party authorized to assist in the retrieval of encryption keys and data on behalf of the data owner. Since key escrow and RAs are both components of a single security solution, the only way to implement key escrow systems is with the use of RAs.
Multiple choice — select one answer
Answer choices
Architectural breakdown & explanation
Key escrow does not strictly require a recovery agent, so the claim that RAs are the only way to implement key escrow is false.
Correct answer(s): b. False
Exam domain: Domain 1: General Security Concepts (12% weight on the official guide).
Official documentation & study links
Practice this certification
This page is one question from the CompTIA Security+ bank. Run a full timed practice exam with domain-weighted random questions in your browser.