CompTIA Security Plus Mock Test Q155

Which of the following would satisfy wireless network implementation requirements to use mutual authentication and usernames and passwords?

A. EAP-MD5
B. WEP
C. PEAP-MSCHAPv2
D. EAP-TLS

Correct Answer: C
Section: Network Security

Explanation:
PEAP-MS-CHAP v2 is easier to deploy than EAP-TLS or PEAP-TLS because user authentication is accomplished via password-base credentials (user name and password) rather than digital certificates or smart cards.

Incorrect Answers:
A: MD5 has been employed in a wide selection of cryptographic applications, and is also commonly used to verify data integrity.
B: Usernames and passwords are not required for WEP authentication.
D: Authenticated wireless access design based on Extensible Authentication Protocol – Transport Level Security (EAP-TLS) can use either smart cards or user and computer
certificates to authenticate wireless access clients. EAP-TLS does not use usernames and passwords for authentication.

References:
https://technet.microsoft.com/en-us/library/dd348500(v=ws.10).aspx
https://technet.microsoft.com/en-us/library/dd348478(v=ws.10).aspx
http://en.wikipedia.org/wiki/MD5