Chapter 5 - Protecting Wireless Networks

Question 1

Rene

Which standard defines wireless LANs transmitting at 1Mbps or 2Mbps bandwidths using 2.4 GHz frequency Spectrum

Answer 1

page 169

802.11

Question 2

Rene
Which standard provides for security enhancements to the wireless standard with particular focus on authentication. The standard is often referenced as WPA2.

Answer 2

page 170

802.11i

Question 3

Rene

What wireless protocol was implemented in a number of wireless devices, including smartphones and other mobile devices?

Answer 3

page 171

Wired Equivalent Privacy (WEP)

Question 4

Rene

Which Protocol uses a smaller version of HTML called WML, which is used for Internet displays?

Answer 4

page 172

Wireless Application Protocol (WAP)

Question 5

Rene

What provides an encrypted and authenticated connection between a wireless client and a server?

Answer 5

page 173

Wireless Transport Layer Security (WTLS)

Question 6

Rene

What is Anonymous Authentication?

Answer 6

page 174

This allows virtually anyone to connect to the wireless portal

Question 7

Rene

What is Server Authentication?

Answer 7

page 174

This requires the workstation to authenticate against the server.

Question 8

Rene

What is 2-way Authentication?

Answer 8

page 174

This requires both ends of the connection (client and server) to authenticate to confirm validity

Question 9

Rene

Which Protocol provide services similar to TCP and UDP for WAP?

Answer 9

page 175

Wireless Transaction Protocol (WTP)

Question 10

Rene

What are the technologies used to provide services between devices?

Answer 10

page 175

• Wireless Session Protocol (WSP) - manages the session information and connection between devices.
• Wireless Transaction Protocol (WTP) - provides services similar to TCP & UDP for WAP.
• Wireless Transport Layer Security (WTLS) is the security layer of WAP
• Wireless Datagram Protocol (WDP) - provides the common interface between devices

Question 11

Rene

What are captive Portals?

Answer 11

page 180

Require users to agree to some condition before they use the network or Internet.

Question 12

Rene

What does NIST recommend that VPN use for validated encryption algorithms?

Answer 12

page 181

Federal Information Processing Standards (FIPS)

Question 13

Rene

What are the five EAP types adopted by the WPA/WPA2 standard?

Answer 13

page 181

• EAP-TLS
• EAP-PSK
• EAP-MD5
• LEAP
• PEAP

Question 14

Rene

What technology that requires a user to bring the client close to the AP in order to verify that the device is present?

Answer 14

page 182

Near Field Communications (NFC)

Question 15

Rene

What is LEAP?

Answer 15

page 182
Lightweight Extensible Authentication Protocol (LEAP) was created by Cisco as an extension to EAP, but it’s being phased out in favor of PEAP.
It lacks native Windows support

Question 16

Rene

What is PEAP?

Answer 16

page 182
Protected Extensible Authentication Protocol (PEAP)
Cisco, RSA and Microsoft worked together to create PEAP,

Question 17

Rene

What is War Driving?

Answer 17

page 185

Refers to driving around town with a laptop looking for APs to communicate with.

Question 18

Rene

What is War Chalking?

Answer 18

page 185

Involves those who discover a way into the network leaving signals on, or outside.

Question 19

Rene

What is an Evil Twin Attack?

Answer 19

page186
Is where a rogue Wireless Access Point poses as a legitimate wireless service provider to information that users transmit.

Question 20

Rene

What is Bluesnarfing?

Answer 20

page 187

Gaining unauthorized access through a Bluetooth connection

Question 21

Rene

What is Bluejacking?

Answer 21

page 187

Sending if unsolicited messages (think spam) over a Bluejacking connection.

Question 22

Rene

What are some of the “Sandwich Shop Attack”?

Answer 22

page 188

• Rogue Access Point
• Jamming
• Interference
• Bluejacking
• Evil Twin
• Replay Attack

Question 23

Rene

What is CCMP?

Answer 23

page 172
Counter mode with Cipher block chaining Message Authentication Code Protocol (CCMP)
Uses a 128-bit AES encryption with 48-bit initialization vector.

Question 24

Rene

Where do you go to change the Order of Preferred Networks?

Answer 24

page 179

Start > Control Panel > Network and Sharing > Manage Wireless Networks

Question 25

Rene

What is cloaking?

Answer 25

page 183

turning off the SSID broadcast