Which option best describes LANMAN Challenge / Response?

LANMAN Challenge/Response refers to the authentication flow where the server issues a random challenge and the client proves knowledge of the password by returning a value computed from the LANMAN password hash. The server, which stores the LM hash, can verify the client by performing the same calculation and comparing the result. This relies on the LM hash, which is generated from the password in a way that uses DES and splits the password into two 7-character parts, making the response depend on that hash without sending the password itself. Because of these weaknesses in the LM-based method, it’s considered insecure and is superseded by more robust approaches like NTLMv2 or Kerberos. The other options describe either the hash algorithm in isolation, a different authentication protocol, or a DES-based hash function, none of which capture the challenge/response flow used by LANMAN.