10A: Discover Wireless Attacks

Question 1

An early wireless encryption standard that features the Temporal Key Integrity Protocol (TKIP). TKIP dynamically generates a new 128-bit key for each packet. In addition, this standard includes a Message Integrity Check (MIC), which provides a stronger method (than a CRC) to ensure data integrity

Answer 1

WPA

Question 2

An improvement of WPA and replaced RC4 and TKIP with Counter Mode CBC-MAC Protocol (CCMP) using AES.

Answer 2

WPA2

Question 3

The latest wireless encryption standard, includes advanced features to secure wireless transmissions such as 192-bit encryption. It also features improved authentication, employs a 48-bit initialization vector, and uses Protected Management Frames (PMFs) to prevent exposure of management traffic.

Answer 3

WPA3

Question 4

A tool that provides the ability to capture 802.11 frames and then use the output to identify the Basic Service Set ID (MAC address) of the access point along with the MAC address of a victim client device.

Answer 4

airodump-ng

Question 5

An attack in which radio waves disrupt 802.11 wireless signals.

Answer 5

jamming

Question 6

Command-line tool used to perform brute force attacks against WPS-enabled access points.

Answer 6

Reaver

Question 7

In EAP architecture, the device requesting access to the network.

Answer 7

supplicant

Question 8

A PNAC switch or router that activates EAPoL and passes a supplicant’s authentication data to an authenticating server, such as a RADIUS server.

Answer 8

authenticator

Question 9

EAP implementation that uses a server-side certificate to create a secure tunnel for user authentication, referred to as the inner method.

Answer 9

PEAP

Question 10

A rogue access point that attempts to trick users into believing that it is a legitimate AP, such as an organization’s official Wi-Fi network

Answer 10

Evil Twin