How do I approach System Design interview questions?

System Design questions require understanding of core concepts and practice. PracHub provides solutions with explanations to help you master system design interviews.

What difficulty level is this interview question?

This is a medium difficulty System Design question, commonly asked during Onsite rounds at Coupang.

What role is this question designed for?

This question is commonly asked for Software Engineer candidates at Coupang during technical interviews.

Design a PKI for internal mTLS and certificates | Coupang Interview Question

Design a PKI for internal mTLS and certificates

Last updated: Mar 29, 2026

Quick Overview

This question evaluates a candidate's competency in PKI architecture, cryptographic key management, certificate lifecycle (issuance, renewal, revocation), and operational security for internal mTLS and related signing use cases.

Coupang

Dec 13, 2025, 12:00 AM

Software Engineer

Onsite

System Design

System Design Prompt

Design a Public Key Infrastructure (PKI) for an organization to issue and manage certificates used for:

Internal mTLS between services
User/device certificates (optional extension)
Code signing or document signing (optional extension)

Requirements

Secure certificate issuance and renewal (automation preferred)
Certificate revocation (compromise/termination)
Strong key protection (HSM/KMS where appropriate)
Support multiple environments (dev/stage/prod) and possibly multiple regions
Auditable operations and incident response plan

Deliverables

CA hierarchy design (root/intermediate)
Issuance/renewal workflows
Revocation approach (CRL/OCSP) and trade-offs
Key management, rotation, and disaster recovery
Operational model (access control, auditing)

Solution

Show

Comments (0)

Loading comments...

Browse More Questions

More System Design•More Coupang•More Software Engineer•Coupang Software Engineer•Coupang System Design•Software Engineer System Design