Ch.9

Question 1

an attack that sends unsolicited messages to Bluetooth-enabled devices

Answer 1

bluejacking

Question 2

an attack that accesses unauthorized information from a wireless device through Bluetooth connection

Answer 2

bluesnarfing

Question 3

a wireless technology that uses short-range radio frequency (RF) transmissions and provides rapid ad hoc device pairings

Answer 3

Bluetooth

Question 4

an infrastructure that is used on public access WLANs to provide a higher degree of security

Answer 4

captive portal AP

Question 5

a weak authentication protocol that has been replaced by the Extensible Authentication Protocol (EAP)

Answer 5

Challenge-Handshake Authentication Protocol (CHAP)

Question 6

the encryption protocol used for WPA2 that specifies the use of a general-purpose cipher mode algorithm providing data privacy with AES

Answer 6

Counter Mode with Cipher Block Chaining Message Authentication Code Protocol (CCMP)

Question 7

an AP set up by an attacker to mimic an authorized AP and capture transmissions, so a user’s device will unknowingly connect to this evil twin instead of the authorized AP

Answer 7

evil twin

Question 8

a framework for transporting authentication protocols that defines the format of the messages

Answer 8

Extensible Authentication Protocol (EAP)

Question 9

a 24-bit value used in WEP that changes each time a packet is encrypted

Answer 9

initialization vector (IV)

Question 10

a proprietary EAP method developed by Cisco Systems requiring mutual authentication used for WLAN encryption using Cisco client software

Answer 10

Lightweight EAP (LEAP)

Question 11

a method for controlling access to a WLAN based on the device’s MAC address

Answer 11

Media Access Control (MAC) address filtering

Question 12

A set of standards primarily for smartphones and smart cards that can be used to establish communication between devices in close proximity

Answer 12

near field communication (NFC)

Question 13

A weak authentication protocol that has been replaced by the Extensible Authentication Protocol (EAP)

Answer 13

Password Authentication Protocol (PAP)

Question 14

The authentication model used in WPA that requires a secret key value to be entered into the AP and all wireless devices prior to communicating

Answer 14

preshared key (PSK)

Question 15

an EAP method designed to simplify the deployment of 802.1x by using Microsoft Windows logins and passwords

Answer 15

Protected EAP (PEAP)

Question 16

Intentionally flooding the radio frequency (RF) spectrum with extraneous RF signal “noise” that creates interference and prevents communications from occurring

Answer 16

RF jamming

Question 17

an unauthorized AP that allows an attacker to bypass many of the network security configurations and opens the network and its users to attacks

Answer 17

rogue access point

Question 18

the alphanumeric user-supplied network name of a WLAN

Answer 18

service set identifier (SSID)

Question 19

an in-depth examination and analysis of a wireless LAN site

Answer 19

site survey

Question 20

the WPA and WPA2 encryption technology

Answer 20

temporal key integrity protocol (TKIP)

Question 21

the process of documenting and then advertising the location of wireless LANs for others to use

Answer 21

war chalking

Question 22

the original set of protections from the Wi-Fi Alliance designed to address both encryption and authentication

Answer 22

Wi-Fi Protected Access (WPA)

Question 23

The second generation of WPA security from the Wi-Fi Alliance that addresses authentication and encryption on WLANs and is currently the most secure model for Wi-Fi security

Answer 23

Wi-Fi Protected Access 2 (WPA2)

Question 24

an optional means of configuring security on wireless local area networks primarily intended to help users who have little or no knowledge of security to quickly and easily implement security on their WLANs. Due to design and implementation flaws, WPS is not considered secure

Answer 24

Wi-Fi Protected Setup (WPS)

Question 25

an IEEE 802.11 security protocol designed to ensure that only authorized parties can view transmitted wireless information. WEP has significant vulnerabilities and is not considered secure

Answer 25

Wired Equivalent Privacy (WEP)

Question 26

a wireless network designed to replace or supplement a wired local area network (LAN)

Answer 26

wireless local area network (WLAN)

Question 27

a passive attack in which the attacker captures transmitted wireless data, records it, and then sends it on to the original recipient without the attacker’s presence being detected

Answer 27

wireless replay

Question 28

Which technology is predominately used for contactless payment systems?

a. wireless local area network (WLAN)
b. Bluetooth
c. near field communication (NFC)
d. Temporal Key Integrity Protocol (TKIP)

Answer 28

C

Question 29

Blue tooth falls under the category of _________.

a. local area network (LAN)
b. short area network (SAN)
c. paired-device network (PDN)
d. personal area network (PAN)

Answer 29

D

Question 30

Which of these IEEE WLANs has the highest data rate?

a. 802.11b
b. 802.11n
c. 802.11g
d. 802.11ac

Answer 30

D

Question 31

Which of these technologies is NOT found in a wireless broadband router?

a. wireless probe
b. firewall
c. router
d. access point

Answer 31

A

Question 32

Why is a rogue AP a security vulnerability?

a. It uses the weaker IEEE 802.15.ax protocol
b. It allows an attacker to bypass many of the network security configurations
c. It requires the use of vulnerable wireless probes on all mobile devices
d. It conflicts with other network firewalls and can cause them to become disabled

Answer 32

B

Question 33

Which of these is NOT a risk when a home wireless router is not securely configured?

a. An attacker can steal data from any folder with file sharing enabled
b. Usernames, passwords, credit card numbers, and other information sent over the WLAN could be captured by an attacker
c. Only 50 percent of the packets will be encrypted
d. Malware can be injected into a computer connected to the WLAN

Answer 33

C

Question 34

Which of these Wi-Fi Protected Setup (WPS) methods is vulnerable?

a. PIN method
b. push-button method
c. pconet method
d. NFC method

Answer 34

A

Question 35

If Cora tries to access a free public Wi-Fi at a local coffee shop that requires her to first agree to an Acceptable Use Policy (AUP) before continuing, what type of AP has she encountered?

a. web-based
b. captive portal
c. rogue
d. Internet content filter

Answer 35

B

Question 36

What is the unauthorized access of information from a wireless device through a Bluetooth connection called?

a. bluejacking
b. bluesnarfing
c. Bluetooth snatching
d. Bluetooth spoofing

Answer 36

B

Question 37

The primary design of a(n)_______ is to capture the transmissions from legitimate users.

a. rogue access point
b. WEP
c. evil twin
d. Bluetooth grabber

Answer 37

C

Question 38

Which of these is a vulnerability of MAC address filtering?

a. The user must enter the MAC
b. MAC addresses are initially exchanged between wireless devices and the AP in an unencrypted format.
c. APs use IP addresses instead of MACs
d. Not all operating systems support MACs

Answer 38

B

Question 39

Which of these is NOT a limitation of turning off the SSID broadcast from an AP?

a. Users can more easily roam from one WLAN to another.
b. the SSID can easily be discovered, even when it is not contained in beacon frames, because it still is transmitted in other management frames sent by the AP.
c. Turning off the SSID broadcast may prevent users from being able to freely roam form one AP coverage area to another
d. Some versions of operating systems favor a network that broadcasts an SSID over one that does not.

Answer 39

A

Question 40

What is the primary weakness of wired equivalent privacy (WEP)?

a. it functions only on specific brands APs
b. its usage creates a detectable pattern
c. it slows down a WLAN from 104 Mbps to 16 Mbps
d. initialization vectors (IVs) are difficult for users to manage

Answer 40

B

Question 41

WPA replaces WEP with _______.

a. WPA2
b. Temporal Key Integrity Protocol (TKIP)
c. Cyclic Redundancy Check (CRC)
d. Message Integrity Check (MIC)

Answer 41

A

Question 42

A Preshared Key (PSK) of fewer than ______ characters may be subject to an attack if that key is a common dictionary word.

a. 20
b. 32
c. 48
d. 64

Answer 42

A

Question 43

A WEP key that is 128 bits in length _______.

a. has an initialization vector (IV) that is the same length as a WEP key of 64 bits
b. cannot be cracked because it is too long
c. cannot be used on access points that use passphrases
d. is less secure than a WEP key of 64 bits because shorter keys are stronger

Answer 43

C

Question 44

AES-CCMP is the encryption protocol standard used in __________.

a. bluetooth
b. WPA2
c. IEEE 802.11
d. WPA

Answer 44

B

Question 45

What is the Extensible Authentication Protocol (EAP)?

a. framework for transporting authentication protocols
b. a subset of WPA2
c. the protocol used in TCP/IP for authentication
d. a technology used by IEEE 802.11 for encryption

Answer 45

A

Question 46

Which technology should be used instead of LEAP?

a. STREAK
b. PEAP
c. LEAP-2
d. REAP

Answer 46

B

Question 47

Which of these is NOT a type of wireless AP probe?

a. wireless device probe
b. WNIC PROBE
c. dedicated probe
d. AP probe

Answer 47

B