CISSP · Question #1045
Wi-Fi Protected Access 2 (WPA2) provides users with a higher level of assurance that their data will remain protected by using which protocol?
The correct answer is D. Extensible Authentication Protocol (EAP). WPA2 uses the Extensible Authentication Protocol (EAP) as its authentication framework to provide strong, flexible identity verification for wireless network access.
Question
Options
- ASecure Shell (SSH)
- BInternet Protocol Security (IPsec)
- CSecure Sockets Layer (SSL)
- DExtensible Authentication Protocol (EAP)
How the community answered
(38 responses)- A3% (1)
- B3% (1)
- C8% (3)
- D87% (33)
Why each option
WPA2 uses the Extensible Authentication Protocol (EAP) as its authentication framework to provide strong, flexible identity verification for wireless network access.
SSH is a remote access and secure command-line protocol used for encrypted management sessions over TCP/IP networks, and has no role in the WPA2 wireless authentication or encryption process.
IPsec operates at the network layer to encrypt and authenticate IP packets and is used for VPN tunnels, not as the underlying authentication mechanism within the WPA2 wireless security standard.
SSL (and its successor TLS) is a transport-layer security protocol used to encrypt application-layer communications such as HTTPS, and is not part of the WPA2 authentication or encryption framework.
WPA2 in Enterprise mode leverages EAP as its authentication protocol framework, enabling mutual authentication between clients and authentication servers (typically via RADIUS). EAP supports multiple authentication methods (EAP-TLS, PEAP, EAP-TTLS) and works alongside AES-CCMP encryption to ensure that only authorized users gain access, providing a higher level of assurance for data protection compared to WPA.
Concept tested: WPA2 authentication protocol using EAP framework
Source: https://learn.microsoft.com/en-us/windows/security/operating-system-security/network-security/wireless-networking/wireless-access-deployment
Topics
Community Discussion
No community discussion yet for this question.