Chapter 4: Securing Your Network

Question 1

W-Fi Protected Access 2 (WPA2)

Answer 1

Uses Advanced Encryption Standard (AES) and Counter-mode/CBC-Mac protocol (CCMP).

Question 2

WPA2 Pre-Shared Key (PSK) mode

Answer 2

Users access with PSK. Provides authorization, not authentication.

Question 3

WPA 2 Enterprise Mode

Answer 3

Users authenticate with credentials. Uses 802.1X server, often RADIUS.

Question 4

Wi-Fi Protected Access 3 (WPA3)

Answer 4

Uses Simultaneous Authentication of Equals instead of PSK.

Question 5

Protected EAP (PEAP)

Answer 5

Uses TLS and requires a certificate on the 802.1X server

Question 6

EAP-TTLS

Answer 6

Extension of PEAP allowing systems to use older authentication methods. Uses TLS and requires a certificate on the 802.1X server.

Question 7

EAP-TLS

Answer 7

Uses TLS and requires certificates on both the 802.1X server and the client.

Question 8

Bluejacking

Answer 8

Sending messages to devices.

Question 9

Bluesnarfing

Answer 9

Stealing data from devices.

Question 10

Bluebugging

Answer 10

Implementing a backdoor to devices.

Question 11

Password Authentication Protocol (PAP)

Answer 11

Used with Point-to-Poiint Protocol (PPP). Sends in clear text.

Question 12

Challenging Handshake Authentication Protocol (CHAP)

Answer 12

Client and server both know a shared secret used in the authentication process. Secret Is hashed after combined with nonce (number used once).

Question 13

Remote Authentication Dial-In Service (RADIUS)

Answer 13

Centralized authentication service.
Only encrypts the password.

Question 14

Terminal Access Controller Access-Control System Plus (TACAS+)

Answer 14

Encrypts the entire authentication process.
Uses multiple challenges and responses between the client and the server.