13 - Wireless and Mobile Security

Question 1

Alyssa wants to use her Android phone to store and manage cryptographic certificates. What type of solution could she choose to do this using secure hardware?

Answer 1

A MicroSD HSM

Question 2

Fred’s company issues devices in a BYOD model. That means Fred wants to ensure that corporate data and applications are kept separate from personal applications on the devices. What tech is best suited to meet this need?

Answer 2

Containerization

Question 3

Michelle has deployed iPads to her staff who work the factory floor. She wants to ensure that the devices work on in the factory and that if they are taken home, they cannot access business data or services. What type of solution is best suited to her needs?

Answer 3

Geofencing

Question 4

Which wireless technology is frequently used for door access cards?

Answer 4

Radio Frequency Identification (RFID)

Question 5

During a site survey, Chris discovers that there are more access points broadcasting his org’s SSID than he expects there to be. What type of wireless attack has he likely discovered?

Answer 5

An Evil Twin

Question 6

Daniel knows that WPA3 has added a method to ensure that brute-force attacks against weak pre-shared keys are less likely to succeed. What is this tech called?

Answer 6

Simultaneous Authentication of Equals (SAE)

Question 7

Isabelle needs to select the EAP protocol that she will use with her wireless network. She wants to use a secure protocol that does not require client devices to have a certificate, but she does want to require mutual authentication. Which protocol should she use?

Answer 7

PEAP

Question 8

Theresa has implemented tech that keeps data for personal use separate from data for her company on mobile devices used by members of her staff. What is this concept called?

Answer 8

Storage Segmentation

Question 9

What standard allows USB devices like cameras, keyboards, and flash drives to be plugged into mobile devices and used as they normally would be?

Answer 9

USB on the go -or- USB OTG

Question 10

Madhuri disables SMS, MMS, and RCS on phones in her org. What has she prevented from being sent?

Answer 10

Text messages and multimedia messages

Question 11

What is the most frequent concern that leads to GPS tagging being disabled by some companies via an MDM tool?

Answer 11

Privacy Concerns

Question 12

Bart knows that there are two common connection methods between Wi-Fi devices. Which of the following best describes Ad Hoc Mode?

Answer 12

Point-to-Point

Question 13

Susan wants to ensure that the threat of a lost phone creating a data breach is minimized. What two technologies should she implement to do this?

Answer 13

Remote Wipe and Full Device Encryption (FDE)

Question 14

What are the two most commonly deployed biometric authentication solutions for mobile devices?

Answer 14

Face and Fingerprint Recognition

Question 15

Alaina has implemented WPA2 and uses enterprise authentication for access points in infrastructure mode. What encryption protocol is her network using?

Answer 15

CCMP

Question 16

Jerome wants to allow guests to use his org’s wireless network, but he does not want to provide a pre-shared key. What solution can he deploy to gather information such as email addresses or other contact info before allowing users to access his open network?

Answer 16

A Captive Portal

Question 17

Amanda wants to create a view of her buildings that shows wi-fi signal strength and coverage. What is this type of view called?

Answer 17

A Heatmap

Question 18

Laura wants to deploy a WPA2 secured wireless for her small business, but she doesn’t have a RADIUS server set up. If she wants her Wi-Fi to be encrypted, what is her best option for wireless authentication?

Answer 18

Pre-shared Key (PSK)

Question 19

Gurvinder wants to select a mobile device deployment method that provides employees with devices that they can use as though they’re personally owned to maximize flexibility and ease of use. What deployment model should he select?

Answer 19

Corporate-Owned, Personally-Enabled (COPE)

Question 20

Octavia discovers that the contact list from her phone has been acquired via a wireless attack. Which of the following is the MOST likely culprit?

• Bluejacking
• An evil maid
• Bluesnarfing
• An evil twin

Answer 20

Bluesnarfing