Wireless Security

Question 1

WPA3 […] prevents data from being decrypted after it has been transmitted over the air.

Answer 1

forward secrecy

Question 2

WPA3 […] protects the four-way handshake when using personal mode authentication.

Answer 2

SAE (Simultaneous Authentication of Equals)

Question 3

WPA3 uses […] for encryption/MIC.

Answer 3

GCMP

Question 4

WPA2 uses […] for encryption/MIC.

Answer 4

CCMP

Question 5

WPA uses […] for encryption/MIC.

Answer 5

TKIP

Question 6

Which WPA authentication mode uses 802.1X/EAP?

Answer 6

Enterprise mode

Question 7

Which WPA authentication mode uses a PSK?

Answer 7

Personal mode

Question 8

What are the two WPA authentication modes?

Answer 8

Personal, Enterprise

Question 9

What does GMAC stand for?

Answer 9

Galois Message Authentication Code

Question 10

What does GCMP use for MIC?

Answer 10

GMAC

Question 11

What does GCMP use for encryption?

Answer 11

AES counter mode

Question 12

What does CBC-MAC stand for?

Answer 12

Cipher Block Chaining Message Authentication Code

Question 13

What does CCMP use as a MIC?

Answer 13

CBC-MAC

Question 14

What does CCMP use for encryption?

Answer 14

AES counter mode

Question 15

Which encryption protocol was developed as an improvement upon WEP?

Answer 15

TKIP

Question 16

What does GCMP stand for?

Answer 16

Galois/Counter Mode Protocol

Question 17

What does CCMP stand for?

Answer 17

Counter/CBC-MAC Protocol

Question 18

What does TKIP stand for?

Answer 18

Temporal Key Integrity Protocol

Question 19

In EAP-TLS, which device/devices require a certificate?

Answer 19

AS and supplicant

Question 20

In PEAP, which device/devices require a certificate?

Answer 20

AS only

Question 21

What does MS-CHAP stand for?

Answer 21

Microsoft Challenge-Handshake Authentication Protocol

Question 22

In PEAP, the server is authenticated via a […].

Answer 22

certificate

Question 23

Three phases of EAP-FAST:
1: PAC is passed from server to client
2: Secure TLS tunnel is established
3: […]

Answer 23

Client is authenticated via the TLS tunnel

Question 24

Three phases of EAP-FAST:
1: PAC is passed from server to client
2: […]
3: Client is authenticated via the TLS tunnel

Answer 24

Secure TLS tunnel is established

Question 25

Three phases of EAP-FAST:
1: […]
2: Secure TLS tunnel is established
3: Client is authenticated via the TLS tunnel

Answer 25

PAC is passed from server to client

Question 26

In EAP-FAST, a […] is passed from the server to the client.

Answer 26

PAC (Protected Access Credential)

Question 27

LEAP uses […] WEP keys that change frequently.

Answer 27

dynamic

Question 28

LEAP provides mutual authentication by exchanging […]

Answer 28

challenge phrases

Question 29

Which 802.1X entity?
The device that receives client credentials and permits/denies access.

Answer 29

Authentication Server (AS)

Question 30

Which 802.1X entity?
The device that provides access to the network.

Answer 30

Authenticator

Question 31

Which 802.1X entity?
The device that wants to connect to the network.

Answer 31

Supplicant

Question 32

EAP is integrated with […], which provides port-based network access control.

Answer 32

802.1X

Question 33

WEP keys can be […] or […] in length.

Answer 33

40 bits (+24 = 64) or 104 bits (+24 = 128)

Question 34

WEP uses the […] algorithm for encryption.

Answer 34

RC4

Question 35

When using […] authentication, all authentication requests are accepted.

Answer 35

open

Question 36

What does EAP-TLS stand for?

Answer 36

EAP Transport Layer Security

Question 37

What does PEAP stand for?

Answer 37

Protected EAP

Question 38

What does EAP-FAST stand for?

Answer 38

EAP Flexible Authentication via Secure Tunneling

Question 39

What does LEAP stand for?

Answer 39

Lightweight EAP

Question 40

What does EAP stand for?

Answer 40

Extensible Authentication Protocol

Question 41

What does WEP stand for?

Answer 41

Wired Equivalent Privacy

Question 42

What does MIC stand for?

Answer 42

Message Integrity Check

Question 43

A […] is used by a wireless AP to encrypt traffic that it wants to send to all of its clients.

Answer 43

group key