Wireless Security Flashcards
WPA3 […] prevents data from being decrypted after it has been transmitted over the air.
forward secrecy
WPA3 […] protects the four-way handshake when using personal mode authentication.
SAE (Simultaneous Authentication of Equals)
WPA3 uses […] for encryption/MIC.
GCMP
WPA2 uses […] for encryption/MIC.
CCMP
WPA uses […] for encryption/MIC.
TKIP
Which WPA authentication mode uses 802.1X/EAP?
Enterprise mode
Which WPA authentication mode uses a PSK?
Personal mode
What are the two WPA authentication modes?
Personal, Enterprise
What does GMAC stand for?
Galois Message Authentication Code
What does GCMP use for MIC?
GMAC
What does GCMP use for encryption?
AES counter mode
What does CBC-MAC stand for?
Cipher Block Chaining Message Authentication Code
What does CCMP use as a MIC?
CBC-MAC
What does CCMP use for encryption?
AES counter mode
Which encryption protocol was developed as an improvement upon WEP?
TKIP
What does GCMP stand for?
Galois/Counter Mode Protocol
What does CCMP stand for?
Counter/CBC-MAC Protocol
What does TKIP stand for?
Temporal Key Integrity Protocol
In EAP-TLS, which device/devices require a certificate?
AS and supplicant
In PEAP, which device/devices require a certificate?
AS only
What does MS-CHAP stand for?
Microsoft Challenge-Handshake Authentication Protocol
In PEAP, the server is authenticated via a […].
certificate
Three phases of EAP-FAST:
1: PAC is passed from server to client
2: Secure TLS tunnel is established
3: […]
Client is authenticated via the TLS tunnel
Three phases of EAP-FAST:
1: PAC is passed from server to client
2: […]
3: Client is authenticated via the TLS tunnel
Secure TLS tunnel is established
Three phases of EAP-FAST:
1: […]
2: Secure TLS tunnel is established
3: Client is authenticated via the TLS tunnel
PAC is passed from server to client
In EAP-FAST, a […] is passed from the server to the client.
PAC (Protected Access Credential)
LEAP uses […] WEP keys that change frequently.
dynamic
LEAP provides mutual authentication by exchanging […]
challenge phrases
Which 802.1X entity?
The device that receives client credentials and permits/denies access.
Authentication Server (AS)
Which 802.1X entity?
The device that provides access to the network.
Authenticator
Which 802.1X entity?
The device that wants to connect to the network.
Supplicant
EAP is integrated with […], which provides port-based network access control.
802.1X
WEP keys can be […] or […] in length.
40 bits (+24 = 64) or 104 bits (+24 = 128)
WEP uses the […] algorithm for encryption.
RC4
When using […] authentication, all authentication requests are accepted.
open
What does EAP-TLS stand for?
EAP Transport Layer Security
What does PEAP stand for?
Protected EAP
What does EAP-FAST stand for?
EAP Flexible Authentication via Secure Tunneling
What does LEAP stand for?
Lightweight EAP
What does EAP stand for?
Extensible Authentication Protocol
What does WEP stand for?
Wired Equivalent Privacy
What does MIC stand for?
Message Integrity Check
A […] is used by a wireless AP to encrypt traffic that it wants to send to all of its clients.
group key
