Wireless Security

Question 1

what is WEPs weakness?

Answer 1

its 24 bit IV (initialization vector)

Question 2

what does an “open” network indicate?

Answer 2

so security and/or no protection.

Question 3

what does WEP indicate?

Answer 3

initialization vectors

Question 4

what does WPA indicate?

Answer 4

TKIP and RC4

Question 5

what does WPA2 indicate?

Answer 5

CCMP and AES

Question 6

what is WPS?

Answer 6

wi fi protected setup. automated encryption set up for wireless networks at a push of a button, but is severely flawed and vulnerable.

Question 7

what is OWE?

Answer 7

Opportunistic Wireless Encryption

Question 8

what is SAE?

Answer 8

Simultaneous Authentication of Equals

Question 9

how does SAE work?

Answer 9

a secure password based authentication
and key agreement that relies on forward security.

Question 10

what is Forward Secrecy?

Answer 10

assures the session keys will not be compromised even if the long term secrets used in the session key exchange have been compromised.

Question 11

what is the first step of forward secrecy?

Answer 11

API and client use a public key system to generate a pair of long term keys.

Question 12

what is the second step of forward secrecy?

Answer 12

AP and client exchange a one time use session key.

Question 13

what is step three of forward secrecy?

Answer 13

API sends client messages and encrypts them using the created session key.

Question 14

what is the fourth step of forward secrey?

Answer 14

client decrypts received messages using the same one-time use session key

Question 15

what is the fifth step of forward secrecy?

Answer 15

process repeats for each message being sent, starting at step 2.

Question 16

what is RADIUS?

Answer 16

Remote Authentication Dial In User Service

Question 17

what does RADIUS do?

Answer 17

cross platform protocol that authenticates and authorizes users to services and accounts for their usage.

Question 18

what is TACACS+?

Answer 18

Cisco proprietary protocol that provides separate authetication, authorization and accounting services.

Question 19

what is diameter?

Answer 19

peer to peer protocol created as a next generation version of RADIUS

Question 20

what is LDAP?

Answer 20

Lightweight Directory Access Protocol

Question 21

what does LDAP do?

Answer 21

cross platform protocol that centralizes info about clients and objects on the network.

Question 22

what is SSO?

Answer 22

single sign on

Question 23

what does SSO do?

Answer 23

enables users to authenticate once and receive authorizations for multiple services across the network.

Question 24

what is kerberos?

Answer 24

uses symmetric encryption and key distribution center to conduct authentication and authorization functions.

Question 25

what is the 802.1x framework?

Answer 25

used for port based authentication on both wired and wireless networks.

Question 26

what is EAP?

Answer 26

Extensible Authentication Protocol

Question 27

what does EAP do?

Answer 27

allows for numerous different mechanisms of authentication.

Question 28

what is EAP-MD5

Answer 28

utilizes simple passwords and the challenge handshake authentication process to provide remote access authentication.

Question 29

what is EAP-TLS?

Answer 29

uses public key infastructure with a digital certificate being installed on both client and the server.

Question 30

what is EAP-TTLS?

Answer 30

requires a digital certificate on the server and a password

Question 31

what is EAP-FAST?

Answer 31

uses a protected access credential to establish mutual authentication between devices.

Question 32

what is PEAP?

Answer 32

protected EAP. uses server certificates and microsofts active directory databases to authenticate a clients password.

Question 33

what is LEAP?

Answer 33

Lightweight EAP a propriatary protocol that only works on CISCO based devices.

Question 34

how can you enable wireless encryption?

Answer 34

by configuring your wireless access point.