CISSP – Information Systems Security Architecture Professional (ISSAP) — Question 91

Which of the following authentication protocols sends a user certificate inside an encrypted tunnel?

Answer options

• A. PEAP
• B. EAP-TLS
• C. WEP
• D. EAP-FAST

Correct answer: B

Explanation

EAP-TLS is the correct answer because it specifically uses certificates for authentication and encapsulates them within a secure, encrypted tunnel. In contrast, PEAP also uses an encrypted tunnel but typically does not send a user certificate, while WEP is an outdated encryption method that does not involve authentication protocols and EAP-FAST, although secure, does not mandate the use of certificates.