Which of the following authentication methods were invented by Cisco? (Select 2 choices.)
A.
PEAP
B.
EAPFAST
C.
EAPTLS
D.
EAPMD5
E.
LEAP
Explanation:
Lightweight Extensible Authentication Protocol (LEAP) and Extensible Authentication Protocol (EAP)Flexible
Authentication via Secure Tunneling (FAST) are both authentication methods that were invented by Cisco.
LEAP is a wireless security method based on 802.1X. The Institute of Electrical and Electronics Engineers
(IEEE) 802.1X standard specifies an authentication mechanism using EAP. The 802.1X standard can use
digital certificates for authentication. Therefore, it is important to maintain an uptodate public key infrastructure
(PKI) configuration. LEAP was developed by Cisco to enable wireless authentication with support for
Authentication, Authorization, and Accounting (AAA) protocols, such as Remote Authentication DialIn User
Service (RADIUS).
Digital certificates are not required on the client or the server during the EAPFAST authentication process?
instead, EAPFAST uses Protected Access Credentials (PACs). EAPFAST is an authentication protocol that can
be used for pointtopoint connections and for both wired and wireless links. The EAPFAST authentication
process consists of three phases. The first phase, which is optional and is considered phase 0, consists of
provisioning a client with a PAC, which is a digital credential that is used for authentication. A PAC can be
manually configured on a client, in which case phase 0 is not required. The second phase, which is referred to
as phase 1, involves creating a secure tunnel between the client and the server. The final phase, which is
referred to as phase 2, involves authenticating the client. If the client is authenticated, the client will be able to
access the network.
EAPTransport Layer Security (TLS) was not invented by Cisco. EAPTLS is an Internet Engineering Task
Force (IETF) standard that is defined in Request for Comments (RFC) 5216. In addition, Protected EAP
(PEAP) was not invented by Cisco alone. PEAP is an open standard developed by Cisco, Microsoft, and RSA.
PEAP and other later variants of EAP, such as EAPTLS, and EAPTunneled TLS (EAPTTLS), are replacing
LEAP.
EAPMessage Digest 5 (MD5) was not invented by Cisco. EAPMD5 uses an MD5 hash function to provide
security and is therefore considered weak when compared to later methods. EAP is an IETF standard that was
originally defined in RFC 2284.Cisco: Cisco LEAPCisco: EAP Methods SummaryCategory:
Secure Access