Join the 40,000+ candidates in over 58 countries that have found a faster, better way to pass their certification exam.
Comprehensive practice exam engine!
All features in the FREE plan, plus:
Welcome to our Remote Authentication Protocols module. In this module, we will discuss PAP, CHAP and EAP. Password Authentication Protocol, or PAP is an obsolete authentication mechanism that was previously used by remote dial-up users with modems. After a PPP, or point-to-point connection, is established, authentication occurs. The problem with PAP is that credentials are sent in clear text, so it's vulnerable to sniffing attacks, man in the middle attacks, and replay attacks.
For this reason, we do not use PAP anymore, with today's modern VPN technology. And VPN is Virtual Private Network, which is commonly used by remote users to access their corporate network when they are out of the office. The Challenge Handshake Authentication Protocol, or CHAP, is an authentication standard that has been in use for quite some time.
With this protocol, the user provides a password for authentication. We do not send the password over the wire in clear text because that would pose a security risk. When the user enters their password it is processed using a hashing algorithm and that hash is stored instead of storing the actual password.
The current version is Microsoft Chat Version 2 which allows the user and the server to mutually authenticate. In order to prevent man in the middle attacks, the server will periodically resend a challenge to the client. And this technology is commonly used by Internet service providers to authenticate their users.
Extensible Authentication Protocol, or EAP, is an upgrade to Microsoft Chat Version 2 to support stronger authentication than hashed passwords. Here we use a second factor of authentication, like a digital certificate or a smart card or a one-time password token, or biometric like a fingerprint or perhaps a facial scan, in order to increase security.
EAP services are available in several different types including protected EAP, or PEAP, EAP-MD5, EAP-TLS, EAP-tunneled TLS or TTLS, and also lightweight EAP, or LEAP, which is a Cisco technology. This concludes our Remote Authentication Protocols module. Thank you for watching.
Classified by skill and ranked by difficulty. Choose to answer questions in STUDY MODE to review and you go.
Know when you’re ready for the high-stakes exam. Have the confidence that you will pass on your first attempt.
Don’t forget what you’ve just studied! Use the intelligent reinforcement questions to stay fresh.
THANK YOU! Just bloody thank you! I’m doing the CEH minor at my college and well...I’ve learned more from this site in a few hours than I’ve learned from my school in 9 weeks about the subject. Keep up the good work!
Skillset’s Exam Engine continuously assesses your knowledge and determines when you are ready take and pass your exam. When Skillset learns that there is a gap between your knowledge and what you need to know to pass, we present you with a focused training module that gets you up to speed quickly. No fluff! Find your knowledge gaps and fill them.
Skillset is confident that we can help anyone pass their exam. If you reach 100% readiness, and you do not pass your exam, we will refund you plus pay for a replacement exam voucher. That’s how powerful our learning system is, we can offer this guarantee and stand behind our products with this no risk to you guarantee. See terms and conditions.
Don’t waste time studying concepts you have already mastered. Focus on what you need to know to pass. The Skillset Competency Diagnostic aligns our Exam Engine and Learning Plan to your baseline knowledge. This saves an average of 31% of the time required to prep for a professional certification exam.
More PRO benefits are being built all the time!