Module 11
Which of the following is NOT a means by which a threat actor can perform a wireless denial of service attack? A. Jamming B. Disassociation C. IEEE 802.11iw separate D. Manipulate duration field values
C. IEEE 802.11iw separate
Which of these Wi-Fi Protected Setup (WPS) methods is vulnerable? A. Push-button method B. Piconet method C. PIN method D. Click-to-connect method
C. PIN method
Adabella was asked by her supervisor to adjust the frequency spectrum settings on a new AP. She brought up the configuration page and looked through the different options. Which of the following frequency spectrum settings would she NOT be able to adjust? A. Frequency band B. Channel selection C. RFID spectrum D. Channel width
C. RFID spectrum
Flavio visits a local coffee shop on his way to school and accesses its free Wi-Fi. When he first connects, a screen appears that requires him to first agree to an Acceptable Use Policy (AUP) before continuing. What type of AP has he encountered?
Captive portal
Which of these is the encryption protocol for WPA2? A. CMAC-RSTS B. CPB C. CBD-MAC D. CCMP
D. CCMP
Which of these is a vulnerability of MAC address filtering in a WLAN? A. Not all operating systems support MACs B. APs use IP addresses instead of MACs C. The user must enter the MAC D. MAC addresses are initially exchanged unencrypted
D. MAC addresses are initially exchanged unencrypted
Minh has been asked to recommend an EAP for a system that uses both passwords and tokens with TLS. Which should she recommend?
EAP-FAST
Maryam is explaining the Extensible Authentication Protocol (EAP). What would be the best explanation of EAP?
It is a framework for transporting authentication protocols
Which of these does not require authentication? A. Open method B. PSK C. Enterprise method D. Initialization method
A. Open method
Which of these is a 24-bit value that changes each time a packet is encrypted and then is combined with a shared secret key? A. RC B. IV C. SL D. SSD
B. IV
Which of these is NOT a type of wireless AP probe? A. Wireless device probe B. WNIC probe C. Dedicated probe D. AP probe
B. WNIC probe
Which of these is NOT a risk when a home wireless router is not securely configured? A. An attacker can steal data from any folder with file sharing enabled B. Wireless endpoints must be manually approved to connect to the WLAN C. Usernames, passwords, credit card numbers, and other information sent over the WLAN could be captured by an attacker D. Malware can be injected into the computer connected to the WLAN
B. Wireless endpoints must be manually approved to connect to the WLAN
Nyla is investigating a security incident in which the smartphone of the CEO was compromised and confidential data was stolen. She suspects that it was an attack that used Bluetooth. Which attack would this be?
Bluesnarfing
Imani has been asked to purchase wireless LAN controllers (WLCs) for the office. What type of APs must she also purchase that can be managed by a WLC?
Controller AP
Zariah is writing an email to an employee about a wireless attack that is designed to capture the wireless transmissions from legitimate users. Which time of attack is Zariah describing?
Evil twin
Fatima has just learned that employees have tried to install their own wireless router in the employee lounge. Why is installing this rogue AP a security vulnerability?
It allows an attacker to bypass network security configurations
Aaliyah has been asked to do research in a new payment system for the retail stores that her company owns. Which technology is predominantly used for contactless payment systems that she will investigate?
Near Field Communication (NFC)
What is the difference between NFC and RFID?
RFID is designed for paper-based tags while NFC is not.
Which WPA3 security feature is designed to increase security at the same time of the handshake?
Simultaneous Authentication of Equals (SAE)
Which technical specification of the Wi-Fi Alliance is the same as ad hoc mode in a Wi-Fi network?
Wifi direct
