CompTIA Security+ (SY0-501) — Question 438

An organization wants to ensure network access is granted only after a user or device has been authenticated.
Which of the following should be used to achieve this objective for both wired and wireless networks?

Answer options

• A. CCMP
• B. PKCS#12
• C. IEEE 802.1X
• D. OCSP

Correct answer: C

Explanation

The correct answer, IEEE 802.1X, is a network access control standard that authenticates devices before they can access the network, applicable to both wired and wireless environments. CCMP is a security protocol used for encryption, PKCS#12 is a format for storing cryptographic keys, and OCSP is a protocol for checking the revocation status of digital certificates, none of which provide the required access control functionality.