Which of the following protocols transmits user credentials as plaintext?
A.
CHAP
B.
MS-CHAP v2
C.
PAP
D.
MS-CHAP
Explanation:
Password Authentication Protocol (PAP) is the least sophisticated authentication protocol, used
mostly when a client calls a server running an operating system other than Windows. PAP has a
number of security vulnerabilities because it transmits user credentials as plaintext.Answer A is incorrect. Challenge Handshake Authentication Protocol (CHAP) is an authentication
protocol that uses a secure form of encrypted authentication. Using CHAP, network dial-up
connections are able to securely connect to almost all PPP servers.Answer B is incorrect. Microsoft Challenge Handshake Authentication Protocol version 2 (MS-CHAP
v2) is the new version of MS-CHAP. MS-CHAP v2 provides the highest level of security and
encryption for dial-up connection in the environment consisting of both Windows NT and Windows
2000/XP dial-up clients. It provides mutual authentication, stronger initial data encryption keys, and
different encryption keys for sending and receiving data.Answer D is incorrect. Microsoft created the Microsoft Challenge Handshake Authentication
Protocol (MS-CHAP) to authenticate remote Windows workstations. It is designed especially for
Windows 95, Windows 98, Windows NT, and Windows 2000 networking products. This protocol
provides data encryption along with password encryption.