Wireless Security

Question 1

Same encryption key is used by the access point and the client

Answer 1

Pre-Shared Key

Question 2

Original 802.11 wireless security standard that claims to be as secure as a wired network. (40-bit encryption key that later upgraded to a 64-bit key, and then again to 128-bit key.)

Answer 2

WEP (Wired Equivalent Privacy)

Question 3

Replacement for WEP, which uses TKIP, Message Integrity Check (MIC), and RC4 encryption

Answer 3

WPA (Wi-Fi Protected Access)

Question 4

802.11i standard to provide better wireless security featuring AES with 128-bit key, CCMP, and integrity checking

Answer 4

Wi-Fi Protected Access version 2 (WPA2)

Question 5

What should you remember for each:
- Open
- WEP
- WPA
- WPA2

Answer 5

• Open - No security or protection provided
• WEP - IV (initialization vectors)
• WPA - TKIP and RC4
• WPA2 - CCMP and AES

Question 6

Automated encryption setup for wireless networks at a push of a button, but is severely flawed and vulnerable

Answer 6

Wi-Fi Protected Setup (WPS)

Question 7

Latest and most secure version of wireless network encryption currently available. (Uses 192-bit key or 128-bit key, and uses GCMP (Galois Counter Mode Protocol), and includes SAE)

Answer 7

Wi-Fi Protected Access 3 (WPA3)

Question 8

A secure password-based authentication and password authenticated key agreement that relies on forward secrecy (uses dragonfly handshake, used in WPA3)

Answer 8

Simultaneous Authentication of Equals (SAE)

Question 8

OWE

Answer 8

Opportunistic Wireless Encryption (OWE)

Question 9

Assures the session keys will not be compromised even if the long-term secrets used in the session key exchange have

Answer 9

Forward Secrecy

Question 10

Cross-platform protocol that authenticates and authorizes users to services, and accounts for their usage

Answer 10

Remote Authentication Dial-In User Service (RADIUS)

Question 11

Cisco-proprietary protocol that provides separate authentication, authorization, and accounting services

Answer 11

Terminal Access Controller Access Control System Plus (TACACS+)

Question 12

Peer-to-peer protocol created as a next-generation version of RADIUS

Answer 12

Diameter

Question 13

Cross-platform protocol that centralizes info about clients and objects on the network

Answer 13

Lightweight Directory Access Protocol (LDAP)

Question 14

Enables users to authenticate once and receive authorization for multiple services across the network

Answer 14

Single Sign-On (SSO)

Question 15

Uses symmetric encryption and the Key Distribution Center to conduct authentication and authorization functions

Answer 15

Kerberos

Question 16

Used for port-based authentication on both wired and wireless networks

Answer 16

802.1x framework

Question 17

Allows for numerous different mechanisms of authentication

Answer 17

Extensible Authentication Protocol (EAP) framework

Question 18

Type of EAP that utilizes simple passwords and the challenge handshake authentication process to provide remote access authentication (both password authentication)

Answer 18

EAP-MD5

Question 19

Type of EAP that uses public key infrastructure with a digital certificate being installed on both the client and the server (both digital certificate authentication)

Answer 19

EAP-TLS

Question 20

Type of EAP that requires a digital certificate on the server and a password on the client for its authentication (one password and one digital certificate authentication)

Answer 20

EAP-TTLS

Question 21

Type of EAP that uses a protected access credential to establish mutual authentication between devices

Answer 21

EAP Flexible Authentication via Secure Tunneling (EAP-FAST)

Question 22

Type of EAP that uses server certificates and Microsoft’s Active Directory database to authenticate a client’s password

Answer 22

Protected EAP (PEAP)

Question 23

Type of EAP that is Protected EAP (PEAP) but proprietary to Cisco-based devices

Answer 23

Lightweight EAP (LEAP)

Question 24

The name of the wireless network

Answer 24

Service Set Identifier (SSID)

Question 25

3 frequency band channels

Answer 25

1) 2.4 GHz
2) 5 GHz
3) 6 GHz

Question 26

2.4 GHz networks operate on which channels?

Answer 26

channels 1-11