Brainscape's Knowledge GenomeTM


Top Flashcards (Certified)
All Flashcards

Information Security > NIS Chapter 06 > Flashcards

NIS Chapter 06 Flashcards

1
Q

What is roaming?

A

is when a STA switches APs while maintaining network connectivity for the upper layer applications

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

In what layer does roaming happen?

A

It happens in layer 2 and is known as the reassociation service

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What causes the client station to roam?

A

propriety rules written into the AP that are defined as the received signal strength indicator threshold. With that it will initiate the roaming process.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is the primary tasks of the AP to AP handoff?

A
  1. target ap tells original that the client is roaming
  2. target asks original for buffered client packets
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What are 2 problems with the autonomous AP-AP?

A
  • back end communication depend on the vendor since it is propierty. AP comm not very effective
  • handoffs very slow
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

WHat does RSNA say about roaming clients?

A

New and unique keys must be generated every time a client roams

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What are the 3 steps that lead to the creation of a PMK (regardless of PSK or 802.1X/EAP

A
  1. discovery
  2. create PMK
  3. 4 way handshake
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Recap all the pre to the generation of PTK

A

3 steps

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What is PMKSA?

A

this is the result of a successful authentication success between supplicant and AS

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Name the types of OMKSA that an PMKID can reference

A
  1. PMK association from a PSK from the target AP
  2. cached PMKSA from 802.1X/EAP
  3. Cahsed and obtained through preauth w
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What is preauth?

A

A client can use preauth to establish a new PMKSA . It allows a STA to initiate a 802.1X/EAP exchange with a radius server while it is still associated with the original AP

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What is PMK caching

A
  • this is a method used by AP and STA to maintain a PMKSA while a client roams . Where the client and authenticator cache PMKs. The PMKIDs are then used to skip the 802.1X authentication and go to the 4 way handshake. The PMK that already exists will then be used as seeding for 4 way.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Why is OKC (oppurtinistic key caching) the preffered method?

A

PMK caching and preauth dp not scale well

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What makes OKC scale better?

A

caching PMK amongst multiple APs under some admin control

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

what is the formula for the P<KID of the OKC?

A

hmac-sha1-128(PMK, pmk name || AA|| SPA)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

summarise the process of OKC

17
Q

what are the advantages of OKC over preauth and cache?

A
  • reduce load on radius sever
  • only one PMK

Information Security (10 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2025 Bold Learning Solutions. Terms and Conditions