CISSP – Information Systems Security Architecture Professional (ISSAP) — Question 38
Mark has been hired by a company to work as a Network Assistant. He is assigned the task to configure a dial-up connection. He is configuring a laptop. Which of the following protocols should he disable to ensure that the password is encrypted during remote access?
Answer options
- A. SPAP
- B. MSCHAP
- C. PAP
- D. MSCHAP V2
Correct answer: C
Explanation
The correct answer is C, PAP, because it transmits passwords in clear text, making it susceptible to interception. Disabling PAP ensures that the password is not sent unencrypted. The other options, such as SPAP, MSCHAP, and MSCHAP V2, provide better security measures for password encryption.