Josh is looking for an authentication protocol that would be effective at stopping session hijacking. Which of the following would be his best choice?

The Challenge Handshake Authentication Protocol (CHAP) was created with the specific aim of preventing session hijacking by performing periodic re-authentication. This sets it apart from Password Authentication Protocol (PAP) and TACACS+, both of which are unable to prevent session hijacking. Additionally, it should be noted that RADIUS is a protocol used for remote access and not authentication.