RADIUS Server for SSO

AE.

To ensure credentials are encrypted in transit when implementing a Remote Authentication Dial-In User Service (RADIUS) server for Single Sign-On (SSO), the following two components are required:

1. Shared key:

A shared secret key is a secret password that is shared between the RADIUS server and the client devices attempting to access the network. The shared key is used to authenticate the RADIUS packets being transmitted between the client and the server. This key ensures that only the RADIUS server and the client devices that have been granted access to the network can communicate and exchange information with each other.

2. Private key:

A private key is used to encrypt and decrypt information that is transmitted between the RADIUS server and the client devices. This key ensures that any sensitive information, such as user credentials, is encrypted during transmission and cannot be intercepted by unauthorized users. The private key is used to encrypt the information on the client device, and the public key is used to decrypt the information on the RADIUS server.

Therefore, the correct answers are B. Shared key and E. Private key.

The other options provided in the answer choices are not related to RADIUS server implementation or encryption of credentials in transit. Public and private keys are used in asymmetric encryption, while DES and MD5 are encryption algorithms that are not commonly used for RADIUS server implementation. Elliptic curve cryptography (ECC) is a type of public key cryptography that is known for its efficiency and security but is not directly related to RADIUS server implementation.