# SSCP — Question 426

**Type:** multiple_choice
**Topics:** topic_1

## Question

Which of the following protects a password from eavesdroppers and supports the encryption of communication?

## Correct Answer

_See scenario._

## Explanation

CHAP: A protocol that uses a three way hanbdshake The server sends the client a challenge which includes a random value(a nonce) to thwart replay attacks.
The client responds with the MD5 hash of the nonce and the password.
The authentication is successful if the client's response is the one that the server expected.
Reference: Page 450, OIG 2007.
CHAP protects the password from eavesdroppers and supports the encryption of communication.
Reference: KRUTZ, Ronald L. & VINES, Russel D., The CISSP Prep Guide: Mastering the Ten Domains of Computer Security, 2001, John Wiley & Sons, Page
44.

**Reference:** examtopics_answer_description

---
Source: https://hiexam.net/q/isc/SSCP/426  
Practice (tracked): https://hiexam.net/study/SSCP/practice