Question 1

Amongst the most common transport encryption algorithms,used to securely transmit documents over the Internet is which of the following?&#10;A) HTTP&#10;B) SSL&#10;C) SSH&#10;D) SNMP

Accepted Answer

SSL (Secure Sockets Layer) is a commonly used transport encryption algorithm that provides secure transmission of documents over the Internet. HTTP (Hypertext Transfer Protocol) is a protocol used for the transmission of data over the Internet but does not provide encryption. SSH (Secure Shell) is a protocol used for secure remote access to a computer, but is not specifically used for document transmission. SNMP (Simple Network Management Protocol) is a protocol used for network management and monitoring, but does not provide encryption for document transmission.

Question 2

What authentication system did the proposed WEP2 standard use?&#10;A) Kerberos&#10;B) AES-CCMP&#10;C) dynamic WEP&#10;D) key caching

Accepted Answer

A

Question 3

Which type of WIDS/WIPS sensor uses dedicated sensors for scanning the RF for attacks?&#10;A) integrated&#10;B) overlay&#10;C) AP&#10;D) embedded

Accepted Answer

Overlay WIDS/WIPS use dedicated sensors specifically for scanning the radio frequency (RF) environment to detect and protect against attacks, separate from the primary wireless network infrastructure.

Question 4

Dictionary attacks are used to attack what aspect of WEP2?&#10;A) encryption&#10;B) initialization vector problems&#10;C) pseudo-random number generator issues&#10;D) authentication

Accepted Answer

Dictionary attacks are used to attack the authentication aspect of WEP2 by attempting to guess the password or passphrase used for authentication.

Question 5

A ____ VPN is a user-to-LAN connection used by remote users.&#10;A) remote-access&#10;B) site-to-site&#10;C) peer-to-peer&#10;D) remote-to-LAN

Accepted Answer

A remote-access VPN is specifically designed to provide a secure and encrypted connection for individual users who are working remotely or connecting from a remote location. This type of VPN enables remote workers to securely access the resources of a corporate network over an internet connection. Option B, site-to-site VPN, is used to connect two or more networks together, whereas peer-to-peer VPN is a decentralized approach in which users connect to each other directly without relying on a centralized server. Option D, remote-to-LAN, is not a commonly used term for describing VPNs.

Question 6

Which of the following is NOT a typical AP status tagged by a WIDS/WIPS system?&#10;A) Unknown&#10;B) Authorized&#10;C) Monitored&#10;D) Rogue

Accepted Answer

The answer of Which of the following is NOT a...

Question 7

WPA2 uses a block cipher rather than a stream cipher.

Accepted Answer

The answer of WPA2 uses a block cipher rather than...

Question 8

A virtual private network (VPN)uses a public,unsecured network as if it were a private,secured network.

Accepted Answer

A VPN encrypts data to create a secure connection over a public network, such as the internet, making it appear as a private network. This allows users to access the internet securely and privately as if they were connected to a private network.

Question 9

Which was developed to help users who have little or no knowledge of security quickly and easily implement WPA2 on their WLANs?&#10;A) VPN&#10;B) TLS&#10;C) IEEE 802.1x&#10;D) WPS

Accepted Answer

WPS (Wi-Fi Protected Setup) was developed to make it easy for users to set up a secure wireless network. It simplifies the process of configuring WPA2 security by providing an easy-to-use method for adding devices to the network securely. This is particularly useful for users who have limited knowledge of security, as WPS automates the process and removes the need for them to understand the complexities of WPA2 configuration.

Question 10

What does WPA include that is designed to prevent an attacker from conducting man-in-the-middle attacks?&#10;A) cyclic redundancy check&#10;B) preshared key&#10;C) message integrity check&#10;D) a temporal key

Accepted Answer

WPA includes a message integrity check, which ensures that the data has not been tampered with during transmission and prevents man-in-the-middle attacks. The other options, such as cyclic redundancy check, preshared key, and temporal key, do not specifically address this type of attack.

Question 11

WEP2 attempted to overcome the limitations of WEP by adding two new security enhancements.

Accepted Answer

The answer of WEP2 attempted to overcome the limitations of...

Question 12

Which encryption protocol is used for 802.11i/WPA2?&#10;A) RSN&#10;B) CCMP&#10;C) PSK&#10;D) TKIP

Accepted Answer

The answer of Which encryption protocol is used for 802.11i/WPA2?&#10;A)...

Question 13

Which of the following is true about RADIUS?&#10;A) messages are never sent from the wireless device to the RADIUS server&#10;B) RADIUS clients,such as laptops,request authentication from a server&#10;C) it is used by WPA personal as the preferred authentication method&#10;D) it is primarily used in low-volume SOHO applications

Accepted Answer

The answer of Which of the following is true about...

Question 14

Signature-based monitoring can be described as which of the following?&#10;A) attempts to answer the question: &#34;will this do something harmful if allowed to execute?&#34;&#10;B) compiles a baseline of normal activities and looks for statistical anomalies&#10;C) examines network traffic,activity,and transactions,and looks for well-known patterns&#10;D) continuously analyzes the behavior of processes and alerts the user if abnormal actions are detected

Accepted Answer

The answer of Signature-based monitoring can be described as which...

Question 15

Due to the enhancements in WEP2,it was widely implemented and remains a popular security mechanism today.

Accepted Answer

The answer of Due to the enhancements in WEP2,it was...

Question 16

What does WPA use for authentication?&#10;A) Kerberos&#10;B) open system authentication&#10;C) preshared key&#10;D) certificates

Accepted Answer

The answer of What does WPA use for authentication?&#10;A) Kerberos&#10;B)...

Question 17

Which problem did dynamic WEP resolve?&#10;A) man-in-the-middle attacks&#10;B) weak IV problem&#10;C) denial of service attacks&#10;D) dictionary attacks

Accepted Answer

The answer of Which problem did dynamic WEP resolve?&#10;A) man-in-the-middle...

Question 18

Kerberos became the heart of the WPA security method.

Accepted Answer

The answer of Kerberos became the heart of the WPA...

Question 19

What was a design goal of WPA?&#10;A) fit into the existing WEP engine&#10;B) a long-term solution to WEP vulnerabilities&#10;C) require users to replace wireless hardware to achieve better security&#10;D) All of the above

Accepted Answer

The answer of What was a design goal of WPA?&#10;A)...

Question 20

It is important that the entire RF spectrum be scanned for potential attacks,which means the channels on which frequencies should be scanned?&#10;A) 11 GHz,54 GHz&#10;B) 2.4 MHz,3.5 MHz&#10;C) 2.4 GHz,5 GHz&#10;D) 11 MHz,54 MHz

Accepted Answer

The answer of It is important that the entire RF...

Question 21

Describe a dictionary attack.

Accepted Answer

The answer of Describe a dictionary attack....

Question 22

Which of the following are TKIP enhancement areas? (Choose all that apply.)&#10;A)a 40-bit encryption key is manually entered on APs and devices.&#10;B)the required key length is increased to 128 bits&#10;C)the IV is enhanced to effectively eliminate collisions&#10;D)different keys are used for different types of traffic

Accepted Answer

The answer of Which of the following are TKIP enhancement...

Question 23

A WIDS/WIPS that uses a(n)_________________ sensor uses existing APs to monitor the RF.

Accepted Answer

The answer of A WIDS/WIPS that uses a(n)_________________ sensor uses...

Question 24

What were three weaknesses in WEP identified by university studies?

Accepted Answer

The answer of What were three weaknesses in WEP identified...

Question 25

Which of the following are true about wireless security systems? (Choose all that apply.)&#10;A)a method used by WIDS is anomaly-based monitoring&#10;B)WIPS can prevent an attack while WIDS cannot&#10;C)WIPS is dependent on signatures&#10;D)passive WIDS can configure the firewall if an attack is detected

Accepted Answer

The answer of Which of the following are true about...

Question 26

Name and describe the two types of wireless intrusion systems.

Accepted Answer

The answer of Name and describe the two types of...

Question 27

Briefly describe RADIUS and mention a strength of RADIUS.

Accepted Answer

The answer of Briefly describe RADIUS and mention a strength...

Question 28

Describe the three areas of enhancement provided by TKIP.

Accepted Answer

The answer of Describe the three areas of enhancement provided...

Question 29

What is EAP?

Accepted Answer

The answer of What is EAP?...

Question 30

What are the three major components in TKIP that address security vulnerabilities? (Choose three.)&#10;A)IV sequence&#10;B)MIC&#10;C)block cipher&#10;D)TKIP key mixing

Accepted Answer

The answer of What are the three major components in...

Question 31

Temporal Key Integrity Protocol (TKIP)has three major components to address vulnerabilities.List and describe them.

Accepted Answer

The answer of Temporal Key Integrity Protocol (TKIP)has three major...

Question 32

Describe a block cipher.

Accepted Answer

The answer of Describe a block cipher....

Question 33

WPA ____________________ was designed for individuals or small office home office (SOHO)settings of generally 10 or fewer employees.

Accepted Answer

The answer of WPA ____________________ was designed for individuals or...

Question 34

________________ WEP solves the weak IV problem by rotating the keys frequently and uses different keys for different types of traffic.

Accepted Answer

The answer of ________________ WEP solves the weak IV problem...

Question 35

Which WEP weaknesses were identified by universities and other organizations? (Choose all that apply)&#10;A)The RC4 PRNG is not properly implemented.&#10;B)WEP didn't always encrypt the data.&#10;C)Initialization vector keys are reused.&#10;D)WEP does not prevent man-in-the-middle attacks.

Accepted Answer

The answer of Which WEP weaknesses were identified by universities...

Question 36

What are the four types of of packets used by EAP?

Accepted Answer

The answer of What are the four types of of...

Question 37

Used in WEP2,____________________ was developed by the Massachusetts Institute of Technology (MIT)and used to verify the identity of network users.

Accepted Answer

The answer of Used in WEP2,____________________ was developed by the...

Question 38

Describe pre-shared key authentication.

Accepted Answer

The answer of Describe pre-shared key authentication....

Question 39

Authentication for WPA Personal is accomplished using a ____________ key.

Accepted Answer

The answer of Authentication for WPA Personal is accomplished using...

Question 40

Match between columns&#10;                        Premises: a device in an IEEE 802.1X network that accepts or rejects a supplicant&#10;a device in an IEEE 802.1X network that accepts or rejects a supplicant&#10;a device in an IEEE 802.1X network that accepts or rejects a supplicant&#10;a device in an IEEE 802.1X network that accepts or rejects a supplicant&#10;a device in an IEEE 802.1X network that accepts or rejects a supplicant&#10;a device in an IEEE 802.1X network that accepts or rejects a supplicant&#10;a device in an IEEE 802.1X network that accepts or rejects a supplicant&#10;a device in an IEEE 802.1X network that accepts or rejects a supplicant&#10;a device in an IEEE 802.1X network that accepts or rejects a supplicant&#10;a device in an IEEE 802.1X network that accepts or rejects a supplicant&#10;an encryption cipher that takes one character and replaces it with another character&#10;an encryption cipher that takes one character and replaces it with another character&#10;an encryption cipher that takes one character and replaces it with another character&#10;an encryption cipher that takes one character and replaces it with another character&#10;an encryption cipher that takes one character and replaces it with another character&#10;an encryption cipher that takes one character and replaces it with another character&#10;an encryption cipher that takes one character and replaces it with another character&#10;an encryption cipher that takes one character and replaces it with another character&#10;an encryption cipher that takes one character and replaces it with another character&#10;an encryption cipher that takes one character and replaces it with another character&#10;providing access based on a user's job function within an organization&#10;providing access based on a user's job function within an organization&#10;providing access based on a user's job function within an organization&#10;providing access based on a user's job function within an organization&#10;providing access based on a user's job function within an organization&#10;providing access based on a user's job function within an organization&#10;providing access based on a user's job function within an organization&#10;providing access based on a user's job function within an organization&#10;providing access based on a user's job function within an organization&#10;providing access based on a user's job function within an organization&#10;dynamically generating a new key for each packet to preventing collisions&#10;dynamically generating a new key for each packet to preventing collisions&#10;dynamically generating a new key for each packet to preventing collisions&#10;dynamically generating a new key for each packet to preventing collisions&#10;dynamically generating a new key for each packet to preventing collisions&#10;dynamically generating a new key for each packet to preventing collisions&#10;dynamically generating a new key for each packet to preventing collisions&#10;dynamically generating a new key for each packet to preventing collisions&#10;dynamically generating a new key for each packet to preventing collisions&#10;dynamically generating a new key for each packet to preventing collisions&#10;a method for auditing usage by using an algorithm to determine if a threat exists&#10;a method for auditing usage by using an algorithm to determine if a threat exists&#10;a method for auditing usage by using an algorithm to determine if a threat exists&#10;a method for auditing usage by using an algorithm to determine if a threat exists&#10;a method for auditing usage by using an algorithm to determine if a threat exists&#10;a method for auditing usage by using an algorithm to determine if a threat exists&#10;a method for auditing usage by using an algorithm to determine if a threat exists&#10;a method for auditing usage by using an algorithm to determine if a threat exists&#10;a method for auditing usage by using an algorithm to determine if a threat exists&#10;a method for auditing usage by using an algorithm to determine if a threat exists&#10;device in an IEEE 802.1X network that makes an appeal for access&#10;device in an IEEE 802.1X network that makes an appeal for access&#10;device in an IEEE 802.1X network that makes an appeal for access&#10;device in an IEEE 802.1X network that makes an appeal for access&#10;device in an IEEE 802.1X network that makes an appeal for access&#10;device in an IEEE 802.1X network that makes an appeal for access&#10;device in an IEEE 802.1X network that makes an appeal for access&#10;device in an IEEE 802.1X network that makes an appeal for access&#10;device in an IEEE 802.1X network that makes an appeal for access&#10;device in an IEEE 802.1X network that makes an appeal for access&#10;using wireless technologies for asset tracking of wireless equipment&#10;using wireless technologies for asset tracking of wireless equipment&#10;using wireless technologies for asset tracking of wireless equipment&#10;using wireless technologies for asset tracking of wireless equipment&#10;using wireless technologies for asset tracking of wireless equipment&#10;using wireless technologies for asset tracking of wireless equipment&#10;using wireless technologies for asset tracking of wireless equipment&#10;using wireless technologies for asset tracking of wireless equipment&#10;using wireless technologies for asset tracking of wireless equipment&#10;using wireless technologies for asset tracking of wireless equipment&#10;an encrypted alternative to the Telnet protocol that is used to access remote computers&#10;an encrypted alternative to the Telnet protocol that is used to access remote computers&#10;an encrypted alternative to the Telnet protocol that is used to access remote computers&#10;an encrypted alternative to the Telnet protocol that is used to access remote computers&#10;an encrypted alternative to the Telnet protocol that is used to access remote computers&#10;an encrypted alternative to the Telnet protocol that is used to access remote computers&#10;an encrypted alternative to the Telnet protocol that is used to access remote computers&#10;an encrypted alternative to the Telnet protocol that is used to access remote computers&#10;an encrypted alternative to the Telnet protocol that is used to access remote computers&#10;an encrypted alternative to the Telnet protocol that is used to access remote computers&#10;a standard originally developed for wired networks that blocks all traffic on a port-by-port basis until the client is authenticated&#10;a standard originally developed for wired networks that blocks all traffic on a port-by-port basis until the client is authenticated&#10;a standard originally developed for wired networks that blocks all traffic on a port-by-port basis until the client is authenticated&#10;a standard originally developed for wired networks that blocks all traffic on a port-by-port basis until the client is authenticated&#10;a standard originally developed for wired networks that blocks all traffic on a port-by-port basis until the client is authenticated&#10;a standard originally developed for wired networks that blocks all traffic on a port-by-port basis until the client is authenticated&#10;a standard originally developed for wired networks that blocks all traffic on a port-by-port basis until the client is authenticated&#10;a standard originally developed for wired networks that blocks all traffic on a port-by-port basis until the client is authenticated&#10;a standard originally developed for wired networks that blocks all traffic on a port-by-port basis until the client is authenticated&#10;a standard originally developed for wired networks that blocks all traffic on a port-by-port basis until the client is authenticated&#10;a security management system that constantly monitors the RF for attacks and sounds an alert if one is detected&#10;a security management system that constantly monitors the RF for attacks and sounds an alert if one is detected&#10;a security management system that constantly monitors the RF for attacks and sounds an alert if one is detected&#10;a security management system that constantly monitors the RF for attacks and sounds an alert if one is detected&#10;a security management system that constantly monitors the RF for attacks and sounds an alert if one is detected&#10;a security management system that constantly monitors the RF for attacks and sounds an alert if one is detected&#10;a security management system that constantly monitors the RF for attacks and sounds an alert if one is detected&#10;a security management system that constantly monitors the RF for attacks and sounds an alert if one is detected&#10;a security management system that constantly monitors the RF for attacks and sounds an alert if one is detected&#10;a security management system that constantly monitors the RF for attacks and sounds an alert if one is detected

Accepted Answer

The Answer of secure shell and real-time location services and is...

Deck 10: Implementing Wireless LAN Security