3.4 Install and Configure Secure Wireless Settings Flashcards
Wifi encryption that utilizes CCMP block cipher code
WPA2
Wifi encryption that utlizes GCMP block cipher mode
WPA3
What is used to ensure data confidentiality when transmitting data via wireless connections?
AES
What type of check is used to verify that the data sent over a wifi connection was not altered during transport?
Message integrity check (MIC)
What is the major issue with WPA2 security?
Pre shared key (PSK) brute force attacks
How has WPA3 fixed the PSK issue with WPA2?
Mutual authentication between device and AP
Perfect forward secrecy
What key exchange is SAE derived from?
Diffie-hellman
What handshake is used in WPA3 that is commonly referred to the dragonfly handshake and involves a unique session key for each session, even if the Private key is shared?
Simultaneous Authentication of Equals (SAE)
Method used by shared or public wifi instances that requires login via a webpage in order to access the internet.
Captive portal
Wifi authentication method that allows ease of setup for mobile devices, and can use different methods such as a PIN, a push button on the wireless device, or NFC
Wifi protected setup (WPS)
What is a major flaw with WPS in regards to the PIN number?
The PIN is highly susceptible to brute force attacks
Base framework for wireless authentication
Extensible Authentication Protocol (EAP)
What is IEEE 802.1X frequently called?
Port-Based Network Access Control (NAC)
What are the 3 main components to EAP authentication over 802.1X?
Supplicant (the user logging in)
Authenticator
Authentication server (LDAP, RADIUS, etc.)
What is EAP-FAST?
EAP Flexible Authentication via Secure Tunneling
Uses a TLS tunnel to send authentication between supplicant and Authentication server using a PAC