CompTIA Network+ (N10-007) — Question 579

An IT director wants to strengthen the process for how wireless users authenticate after a recent security audit in which an evil-twin attack compromised domain administrator accounts. Which of the following will the director MOST likely implement?

Answer options

• A. WPA2-PSK
• B. TKIP-RC4
• C. PEAP
• D. EAP-TLS

Correct answer: D

Explanation

EAP-TLS is a strong authentication method that uses client and server certificates, making it highly secure against attacks like evil twins. In contrast, WPA2-PSK relies on a shared key that can be vulnerable if intercepted, TKIP-RC4 is an outdated encryption standard, and PEAP, while secure, does not offer the same level of client authentication provided by EAP-TLS.