Chapter 13

Question 1

NFC (Near Field Communication)

Answer 1

Allows for very short range communication between devices. Example: Google wallet

Question 2

RFID (Radio Frequency Identification)

Answer 2

A short range wireless technology that uses a tag and receiver to exchange information.

Question 3

Evil Twin Attack

Answer 3

A fake access point that is set up to appear to be a legitimate trusted network.

Question 4

Bluejacking

Answer 4

Unsolicited info is sent to a bluetooth device.

Question 5

Bluesnarfing

Answer 5

Unauthorized access to a bluetooth device aimed at gathering information.

Question 6

Site Survey

Answer 6

Moving throughout the entire facility or space to determine what existing networks are in place and to look at the physical structure for the location options for your access points.

Question 7

WPA-Personal

Answer 7

Uses a preshared key and is often called WPA-PSK. Allows clients to authenticate without an authentication server.

Question 8

WPA-Enterprise

Answer 8

Relies on RADIUS authentication server as part of an 802.1x implementation for authentication.

Question 9

CCMP (Counter Mode Cipher Block Chaining Message Authentication Protocol)

Answer 9

Use AES (Advanced Encryption Standard) to provide confidentiality, stronger encryption, authentication for the user and access control abilities.

Question 10

BYOD (Bring Your Own Device)

Answer 10

The user brings their own personally owned device. More freedom, lower cost, but greater risk.

Question 11

CYOD (Choose Your Own Device)

Answer 11

The organization owns the device but allows the user to select and maintain it.

Question 12

COPE (Corporate Owned Personally Enabled)

Answer 12

Corporate-provided devices allow reasonable personal use while meeting enterprise security and control needs.

Question 13

FDE (Full Device Encryption)

Answer 13

The best way to ensure that stolen or lost devices don’t result in a data breach. Often combined with remote wiping capabilities.