An analyst wants to implement a more secure wireless authentication for office access points. Which of the following technologies allows for encrypted authentication of wireless clients over TLS?
Suggested Answer:A🗳️
EAP by itself is only an authentication framework. PEAP (Protected Extensible Authentication Protocol) fully encapsulates EAP and is designed to work within a TLS (Transport Layer Security) tunnel that may be encrypted but is authenticated. The primary motivation behind the creation of PEAP was to help correct the deficiencies discovered within EAP since that protocol assumes that the communications channel is protected. As a result, when EAP messages are able to be discovered in the ג€clearג€ they do not provide the protection that was assumed when the protocol was originally authored. PEAP, EAP-TTLS, and EAP-TLS ג€protectג€ inner EAP authentication within SSL/TLS sessions.
Guys, its so simple if you keep these in mind:
- WPA2 is among Wireless Cryptographic Protocols
- PEAP is among Wireless Authentication Protocols
- RADIUS is a Remote Access Connection and Authentication Service
- EAP by itself is only an authentication framework
The Answer should be WPA2 there asking the technologies allows for encrypted authentication of wireless. Prior to April 2010 the wi-fi alliance had not certified and included EAP and the other extension used with WPA-WPA2 Enterprise. PEAP Encapsulates and encrypts data in a TLS tunnel. WPA2- Enterprise is your access point security mode. There are two questions that are asked this is one of them the other is which technologies ENCRYPTS authentication of wireless clients over TLS and the answer is PEAP. Again this is asking which of the following technologies ALLOWS for encrypted authentication of wireless clients over TLS and the answer is WPA2
C WPA2 - The question says "allows for encrypted authentication of wireless clients over TLS." That would indicate either PEAP or WPA2-Enterprise, since they both use TLS. But WPA2-Enterprise authenticates BOTH the client and the server via certificates, and PEAP is NOT required to use a client-side certificate, so WPA2-Enterprise is more secure. https://docs.microsoft.com/en-us/windows/win32/nativewifi/wpa2-enterprise-with-tls-profile-sample
Not (A) PEAP requires ONLY server-side certificates to authenticate – and does not require client-side certificates. https://en.wikipedia.org/wiki/Protected_Extensible_Authentication_Protocol
I says "Which of the following TECHNOLOGIES allows for encrypted authentication of wireless clients over TLS?", its not asking for the most secure PROTOCOL but the most secure TECHNOLOGY. I am thinking its WPA2 if its WPA2-Enterprise. I think that the provided answer is PEAP correct.
PEAP (Protected Extensible Authentication Protocol) is a version of EAP, the authentication protocol used in wireless networks and Point-to-Point connections. PEAP is designed to provide more secure authentication for 802.11 WLANs (wireless local area networks) that support 802.1X port access control.
after reading the discussions from a year ago on some answers it looks like the revealed answers have changed over time
upvoted 3 times
...
...
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Faiz
Highly Voted 4 years, 10 months agovaxakaw829
Highly Voted 4 years, 4 months agoHanzero
Most Recent 4 years, 2 months agoWDE2015
4 years, 4 months agoMelvinJohn
4 years, 6 months agoHot_156
4 years, 6 months agoJacobCrane
4 years, 4 months agoMANOFTHEHOUSE
4 years, 6 months agoforward
4 years, 9 months agogm4pack
5 years agoAbner89
5 years, 6 months agobadgriff85
5 years, 8 months agoa1037040
5 years, 1 month agoSnellers
4 years ago