1.2 Threat Management

Question 1

what is lightweight extensible authentication protocol (LEAP)?

Answer 1

a proprietary wireless LAN authentication method developed by Cisco Systems

Question 2

which type of analysis involves identifying traffic that is abnormal?

Answer 2

anomaly analysis

Question 3

which wireless protocol provides the best security: WEP, WAP, WPA, or WPA2?

Answer 3

WPA2 with CCMP

Question 4

which category of IDS might increase logging activities, disable a service, or close a port as a response to a detected security breach?

Answer 4

active detection

Question 5

what does the acronym SIEM denote?

Answer 5

security information and event management

Question 6

what should you do to ensure that a wireless access point signal does not extend beyond it needed range?

Answer 6

reduce the power levels

Question 7

which type of analysis involves examining information in the header of the packet?

Answer 7

protocol analysis

Question 8

what is the purpose of MAC filtering?

Answer 8

to restrict the clients that can access a wireless network

Question 9

what is protected extensible authentication protocol (PEAP)?

Answer 9

a protocol that encapsulates the EAP within an encrypted and authenticated TLS tunnel

Question 10

what are the two modes of WAP and WPA2?

Answer 10

personal (also called preshared key or WPA-PSK / WPA2-PSK) and enterprise

Question 11

what type of analysis focuses on the long term direction in the increase or decrease in a particular type of traffic?

Answer 11

trend analysis

Question 12

which security protocol is the standard encryption protocol for use with the WPA2 standard?

Answer 12

counter mode cipher block chaining message authentication code protocol (CCMP)

Question 13

which security protocol was designed as an interim solution to replace WEP without requiring the replacement of legacy hardware?

Answer 13

temporal key integrity protocol (TKIP)

Question 14

which intrusion detection system (IDS) watches for intrusions that match a known identity?

Answer 14

signature-based IDS

Question 15

which software can collect logs from specified devices, combine the logs, and analyze the combined logs for security issues?

Answer 15

security information and event management (SIEM)

Question 16

what doe heuristic analysis do?

Answer 16

it determines the susceptibility of a system towards a particular threat/risk using decision rules or weighing methods

Question 17

which protocol does the enterprise mode of WPA and WPA2 use for authentication?

Answer 17

extensible authentication protocol (EAP)

Question 18

which wireless mode ensures that wireless clients can only communicate with the wireless access point and not with other wireless clients?

Answer 18

isolation mode

Question 19

which type of IDS or IPS uses an initial database of known attack types but dynamically alters their signatures base on learned behavior?

Answer 19

heuristic

Question 20

what doe packet analysis do?

Answer 20

it examines the entire packet, including the payload

Question 21

what are the non-overlapping channels for 802.11g/n?

Answer 21

channels 1,6, and 11

Question 22

what are the non-overlapping channels for 802.11b?

Answer 22

channels 1,6,11, and 14