Chapter 12: Wireless Networking

Question 1

What is added to the management frame sent out on an AP? pg. 414

Answer 1

controllers generate a specific signature for each WLAN which is added to each frame it sends

Question 2

What is AP’s process if it receives a management frame from an unknown SSID? pg. 414

Answer 2

reports the event to the controller and an alarm is generated

Question 3

How does MFP protect management frames between the AP and client station? pg. 414

Answer 3

MFP allows clients to detect and drop bogus or invalid management frames

Question 4

Two options to mitigate passive attacks on your network are __ and __. pg. 414

Answer 4

IDS/ Intrusion Detection System and IPS/ Intrusion Prevention System

Question 5

T/F IDS only mitigates malware like viruses, Trojan horses, and worms. pg. 414

Answer 5

False….it also detects network attacks, data-driven attacks on apps, host-based attacks like privilege escalation, unauthorized logins, and access to sensitive files

Question 6

The basic security created for IEEE 802.11 is……?? pg 416

Answer 6

the use of SSIDs, open or shared-key authentication, static WEP, and optional MAC authentication/ MAC filtering

Question 7

What is the WEP key composed of ? pg. 417

Answer 7

either 40 or 128 bits and in its basic form, it’s usually statically defined by the network admin on the AP and all the clients that communicate with that AP

Question 8

In what type of network would MAC address filters be considered sufficient? pg. 417

Answer 8

a small number of wireless clients that you don’t want to deploy an encryption-bases access method

Question 9

What is RADIUS and what does this networking protocol offer? pg. 417

Answer 9

Remote Authentication Dial-In User Service offers security benefits: authorization, centralized access, and accounting supervision re: the users and/or PCs that connect to and access the network

Question 10

What provision of RADIUS is deemed it’s reason for it’s rise to stardom? pg. 417

Answer 10

AAA: authentication, authorization, and accounting

Question 11

What two defensive muscle goodies did TKIP/ Temporal Key Integrity Protocol introduce to the WiFi world? pg. 418

Answer 11

WPA/ Wi-Fi Protected Access and WPA2

Question 12

A better form of wireless security than any other basic wireless security method is ___. pg. 420

Answer 12

WPA/WPA2 Pre-Shared Key (PSK)

Question 13

What does the PSK/ Pre-Shared Key actually do? pg. 420

Answer 13

verifies users via a PW or identifying code/ passphrase on both the client machine and the access point

Question 14

How is WPA a benefit over a static WEP key? pg. 420

Answer 14

WPA can change dynamically while the system is used

Question 15

The most difficult security method to configure and maintain yet it is the most secure is…….? pg. 422

Answer 15

EAP-TLS / EAP Transport Layer Security