An analyst wants to implement a more secure wireless authentication for office access
points. Which of the following technologies allows for encrypted authentication of wireless clients over TLS?
A. PEAP
B. EAP
C. WPA2
D. RADIUS
Explanation:
EAP by itself is only an authentication framework.
PEAP (Protected Extensible
Authentication Protocol) fully encapsulates EAP and is designed to work within a TLS (Transport Layer Security) tunnel that may be encrypted but is authenticated. The primary motivation behind the creation of PEAP was to help correct the deficiencies disco
vered within EAP since that protocol assumes that the communications channel are protected. As a result, when EAP messages are able to be discovered in the -clear- they do not provide the protection that was assumed when the protocol was originally authore
d.
PEAP, EAP-TTLS, and EAP-TLS -protect- inner EAP authentication within SSL/TLS sessions.