4.2 Explain Authentication and Access Controls

Question 1

WPA

Answer 1

• WPA is considered exploitable and is no longer used for wireless security. A common exploit used against WPA is an attack on the helper protocol of Wi-Fi Protected Setup (WPS).
• WPA uses 256-bit keys
• operates in two modes of preshared key (PSK),
• PSK is the most common, because it can easily be implemented.
• Enterprise mode requires a certificate server infrastructure and is also called WPA-802.1x. Enterprise mode uses the 802.1x protocol, RADIUS, and EAP; it is often used in corporate environments.

Question 2

WPA2

Answer 2

• 802.11i
  Uses personal and enterprise mode
• Uses AES. AES is more secure than RC4 plus TKIP.
• Also exploitable if WPS service is enabled (WPS needs to be off).

Question 3

Kerberos

Answer 3

• Secure authentication protocol.
• 3DES Triple data encryption AND AES (Advanced Encryption Standard).
• Main authentication protocol for Windows Active Directory.
• Three-way trust to authenticate users and machines.

Question 4

LDAP

Answer 4

LIghtweight Directory Access Protocol.

Open standard directory service protocol.

Uses client-server protocl for looking up objects in a directory service and their respective attributes.

• LDAP adopted by microsoft for AD lookups of objects and domain controllers.

Question 5

Certificates

Answer 5

Use of public key infrastructure (PKI) to validate users, computers, and applications. Even works on some IOT devices.
Remember diagram.