Securing Networks

Question 1

Privilege Escalation

Answer 1

§ Occurs when a user is able to gain the rights of another user or administrator
§ Vertical Privilege Escalation
§ Horizontal Privilege Escalation

Question 2

Backdoor

Answer 2

A way of bypassing normal authentication in a system

Question 3

keys to having network security

Answer 3

An IPS, proper firewall configs, network segmentation, and firmware updates are the keys to having network security

Question 4

Electromagnetic Interference (EMI)

Answer 4

§ A disturbance that can affect electrical circuits, devices, and cables due to radiation or electromagnetic conduction
§ EMI can be caused by TVs, microwaves, cordless phones, motors, and other devices
§ Shielding the cables (STP) or the source can minimize EMI

Question 5

Radio Frequency Interference (RFI)

Answer 5

§ A disturbance that can affect electrical circuits, devices, and cables due to AM/FM transmissions or cell towers
§ RFI causes more problems for wireless networks

Question 6

Crosstalk

Answer 6

§ Occurs when a signal transmitted on one copper wire creates an undesired effect on another wire
§ UTP is commonly used more often than STP

Question 7

Data Emanation

Answer 7

§ The electromagnetic field generated by a network cable or device when transmitting
§ A Faraday cage can be installed to prevent a room from emanating
§ Split the wires of a twisted-pair connection

Question 8

Protected Distribution System (PDS)

Answer 8

Secured system of cable management to ensure that the wired network
remains free from eavesdropping, tapping, data emanations, and other
threats

Question 9

Service Set Identifier (SSID)

Answer 9

§ Uniquely identifies the network and is the name of the WAP used by the
clients
§ Disable the SSID broadcast in the exam

Question 10

Rogue Access Point

Answer 10

An unauthorized WAP or Wireless Router that allows access to the secure
network

Question 11

Evil Twin

Answer 11

A rogue, counterfeit, and unauthorized WAP with the same SSID as your
valid one

Question 12

Wireless Encryption Types

Answer 12

Pre-Shared Key (PSK)
Wired Equivalent Privacy (WEP)
WiFi Protected Access (WPA)
WiFi Protected Access version 2 (WPA2)

Question 13

Pre-Shared Key

Answer 13

Same encryption key is used by the access point and the client

Question 14

Wired Equivalent Privacy (WEP)

Answer 14

§ Original 802.11 wireless security standard that claims to be as secure as a wired network
§ WEP’s weakness is its 24-bit IV (Initialization Vector)

IV (Initialization Vector)

Question 15

WiFi Protected Access (WPA)

Answer 15

Replacement for WEP which uses TKIP, Message Integrity Check (MIC),
and RC4 encryption

TKIP, RC4

Question 16

WiFi Protected Access version 2 (WPA2)

Answer 16

§ 802.11i standard to provide better wireless security featuring AES with a
128-bit key, CCMP, and integrity checking
§ WPA2 is considered the best wireless encryption available

CCMP and AES

Question 17

2.4 GHz signal

Answer 17

Wireless B, G, and N use a 2.4 GHz signal

Question 18

5.0 GHz signal

Answer 18

Wireless A, N, and AC use a 5.0 GHz signal

Question 19

Jamming

Answer 19

§ Intentional radio frequency interference targeting your wireless network to cause a denial of service condition
§ Wireless site survey software and spectrum analyzers can help identify jamming and interference

Question 20

AP Isolation

Answer 20

Creates network segment for each client when it connects to prevent them from communicating with other clients on the network

Question 21

Wireless Attacks

Answer 21

War Driving
War Chalking
IV Attack
WiFi Disassociation Attack
Brute Force Attack

Question 22

IV Attack

Answer 22

Occurs when an attacker observes the operation of a cipher being used with several different keys and finds a mathematical relationship between those keys to determine the clear text data

This happened with WEP and makes it easy to crack

Question 23

WiFi Disassociation Attack

Answer 23

§ Attack that targets an individual client connected to a network, forces it offline by deauthenticating it, and then captures the handshake when it reconnects
§ Used as part of an attack on WPA/WPA2

Question 24

Brute Force Attack

Answer 24

Occurs when an attacker continually guesses a password until the correct
one is found

Question 25

WPA3 - Enterprise Mode

Answer 25

Uses AES-256 encryption with a SHA-384 hash for integrity checking

Question 26

WPA3 - Personal Mode

Answer 26

Uses CCMP-128 as the minimum encryption required for secure connectivity

Question 27

Simultaneous Authentication of Equals (SAE)

Answer 27

§ A secure password-based authentication and password-authenticated key agreement method
§ Simultaneous Authentication of Equals (SAE) provides forward secrecy

Question 28

Perfect Forward Secrecy or Forward Secrecy

Answer 28

A feature of key agreement protocols (like SAE) that provides assurance that session keys will not be compromised even if long-term secrets used in the session key exchange are compromised

Question 29

Bluejacking

Answer 29

Sending of unsolicited messages to Bluetooth-enabled devices such as mobile phones and tablets

Question 30

Bluesnarfing

Answer 30

Unauthorized access of information from a wireless device through a Bluetooth connection

Question 31

Radio Frequency Identification (RFID)

Answer 31

§ Devices that use a radio frequency signal to transmit identifying information about the device or token holder
§ RFID can operate from 10 cm to 200 meters depending on the device

Question 32

Near Field Communication (NFC)

Answer 32

§ Allows two devices to transmit information when they are within close range through automated pairing and transmission
§ NFC devices are operated within 4 cm from each other