Given: ABC corporation is selecting a security solution for there new WLAN. Two of there considered solutions PPTP VPN and 802.1XEAP. They have considered a PPTP VPN and because it is included with both server and desktop operating system. With both solutions are considered strong enough to adhere to corporate security police, the company is worried about security weakness of MS-CHAPv2 authentication.
As a consultant what do you tell ABC Corporation about implementing MS-CHAPv2 authentication? (Choose 2)
A.
MS-CHAPv2 is secure when implemented with AES-CCMP encryption.
B.
MS-CHAPv2 is complaint with WPA-personal, not WPA-2-Enterprise.
C.
MS-CHAPv2 is only appropriate for WLAN security when used inside a TLS-encrypted tunnel.
D.
MS-CHAPv2 uses anonymous differ-Helliman authentication, and therefore secure.
E.
MS-CHAPv2 is only secure when combined with WEP.
F.
MS-CHAPv2 is subject to offline dictionary attacks.
Explanation:
MS -CHAPv2 has also been found vulnerable and should also only be used inside a TLS tunnel.MS-CHAPv2 authentication are also susceptible to offl ine dictionary attacks.