CompTIA Security Plus Mock Test Q1046

Which of the following can use RC4 for encryption? (Select TWO).

A. CHAP
B. SSL
C. WEP
D. AES
E. 3DES

Correct Answer: B,C
Section: Cryptography

Explanation
Explanation/Reference:
B: In cryptography, RC4 (Rivest Cipher 4 also known as ARC4 or ARCFOUR meaning Alleged RC4) is the most widely used software stream cipher and is used in popular Internet
protocols such as Secure Sockets Layer (SSL) and Transport Layer Security (TLS).
C: WEP also uses RC4, however WEP is still unsecure.

Incorrect Answers:
A: the Challenge-Handshake Authentication Protocol (CHAP) does not use RC4.
D: The Advanced Encryption Standard (AES) is a specification for the encryption of electronic data. AES make no use of RC4.
E: Data Encryption Standard (DES) is a symmetric-key algorithm for the encryption of electronic data. DES make no use of RC4.
Triple DES (3DES) is the common name for the Triple Data Encryption Algorithm (TDEA or Triple DEA) symmetric-key block cipher, which applies the Data Encryption Standard (DES)
cipher algorithm three times to each data block.

References:
Dulaney, Emmett and Chuck Eastton, CompTIA Security+ Study Guide, 6th Edition, Sybex, Indianapolis, 2014, pp. 143, 250, 258, 268-269