Wireless Access

Question 1

Open authentication

Answer 1

Requires MAC address

Question 2

Shared Key

Who needs the key
What type of network
Is it secure

Answer 2

All clients and devises have the same key

Small/private network

Relatively insecure

Question 3

802.1x

What type of authentication

Answer 3

Uses usernames/passwords, certificates or devices to authenticate

NAC (Network Access Control)

Uses RADIUS server
LDAP
TACACS+

Question 4

WPA
(Wi-Fi Protected Access)

Encryption
Supports

Answer 4

Uses TKIP for encryption (Temporal Key Integrity Protocal)

Supports WPA-PSK (Pre-Shared Key) and 802.1x (WPK enterprise)

Can use dynamic or pre-shared keys

Question 5

WPA 2 or 80211i

Wi-Fi Protected Access 2

Answer 5

Uses AES (Advanced Encryption Standards). And upgrade to TKIP.

Uses CCMP (Counter Mode with CBC-MAC Protocol) aka AES-CCMP.

Supports pre-shared key (WPA2-PSK or WPA2 Personal) and 802.1x (WPA2 Enterprise) authentication

Can use dynamic or pre-shared keys

Question 6

Captive Portal

Answer 6

Used to authenticate to network

Username/password pop up

Question 7

EAP

Extensible Authentication Protocol

Answer 7

Authentication framework

Question 8

EAP-FAST

EAP Flexible Authentication via Secure Tunneling

Answer 8

CISCO

Replaces LEAP

Question 9

EAP-TLS

EAP Transport Layer Security

Answer 9

Strong Security
Wide adoption
Provides encryption to authentication

Question 10

EAP-TTLS

EAP Tunneled Transport Layer Security

Answer 10

Supports other authentication types by making a secure tunnel

Question 11

PEAP

Protected Extensible Authentication Protocol

Answer 11

Protected EAP

Creates secure tunnel to send EAP across

PEAP v2
EAP-MSCHAPv2