CISSP · Question #405
A project requires the use of en authentication mechanism where playback must be protected and plaintext secret must be used. Which of the following should be used?
The correct answer is D. Challenge Handshake Authentication Protocol (CHAP). CHAP is an authentication protocol that uses a challenge-response mechanism to verify the identity of a remote user. CHAP protects against playback attacks by using a random challenge value that changes periodically. CHAP also uses a plaintext secret, such as a password, that is
Question
A project requires the use of en authentication mechanism where playback must be protected and plaintext secret must be used. Which of the following should be used?
Options
- APassword Authentication Protocol (PAP)
- BExtensible Authentication Protocol (EAP)
- CSecure Hash Algorithm (SHA)
- DChallenge Handshake Authentication Protocol (CHAP)
How the community answered
(30 responses)- A3% (1)
- C3% (1)
- D93% (28)
Explanation
CHAP is an authentication protocol that uses a challenge-response mechanism to verify the identity of a remote user. CHAP protects against playback attacks by using a random challenge value that changes periodically. CHAP also uses a plaintext secret, such as a password, that is shared between the user and the server. The user does not send the password over the network, but instead uses it to generate a response to the challenge. The server does the same and compares the responses. If they match, the user is authenticated.
Topics
Community Discussion
No community discussion yet for this question.