In SSL/TLS protocol, what kind of authentication is supported when you establish a secure session between a
client and a server?

A.
Peer-to-peer authentication

B.
Only server authentication (optional)

C.
Server authentication (mandatory) and client authentication (optional)

D.
Role based authentication scheme

Explanation:
SSL and TLS both support server authentication (mandatory) and client authentication (optional).
Incorrect Answers:
A: Peer-to-peer authentication is not support by SSL/TLS.
B: Server authentication (optional) is not a supported SSL/TLS authentication mode.
D: Role based authentication is not supported by SSL/TLS.

Stewart, James M., Ed Tittel, and Mike Chapple, CISSP: Certified Information Systems Security Professional
Study Guide, 3rd Edition, Wiley & Sons, Indianapolis, 2005, p. 353