Certified Information Systems Security Professional (CISSP) — Question 85

When configuring Extensible Authentication Protocol (EAP) in a Voice over Internet Protocol (VoIP) network, which of the following authentication types is the
MOST secure?

Answer options

• A. EAP-Protected Extensible Authentication Protocol (PEAP)
• B. EAP-Transport Layer Security (TLS)
• C. EAP-Tunneled Transport Layer Security (TLS)
• D. EAP-Flexible Authentication via Secure Tunneling

Correct answer: B

Explanation

EAP-Transport Layer Security (TLS) is considered the most secure option because it provides strong encryption and mutual authentication between the client and server. While EAP-PEAP and EAP-TTLS also provide security, they introduce additional layers that may complicate security implementations. EAP-FAST lacks some features of TLS and may not provide the same level of security, making it less secure than EAP-TLS.