How does PEAP protect the EAP exchange?
A . It encrypts the exchange using the server certificate.
B . It encrypts the exchange using the client certificate.
C . It validates the server-supplied certificate, and then encrypts the exchange using the client certificate.
D . It validates the client-supplied certificate, and then encrypts the exchange using the server certificate.
Answer: A
Explanation:
PEAP is similar in design to EAP-TTLS, requiring only a server-side PKI certificate to create a secure TLS tunnel to protect user authentication, and uses server-side public key certificates to authenticate the server. It then creates an encrypted TLS tunnel between the client and the authentication server. In most configurations, the keys for this encryption are transported using the server’s public key.
Source: https://en.wikipedia.org/wiki/Protected_Extensible_Authentication_Protocol
Leave a Reply