Wireless Security

Question 1

What was the first wireless security protocol?

Answer 1

Wired Equivalent Privacy (WEP).

Question 2

Why is WEP insecure?

Answer 2

Uses a static key, short IV (24-bit), and weak encryption (RC4) prone to various attacks.

Question 3

List some attacks against WEP.

Answer 3

FMS Attack, KoreK Attack, ChopChop Attack, Fragmentation Attack, PTW Attack.

Question 4

What encryption protocol replaced WEP?

Answer 4

Wi-Fi Protected Access (WPA).

Question 5

What improvements does WPA have over WEP?

Answer 5

Uses TKIP, provides dynamic keying, better integrity checks, and improved security.

Question 6

What are the vulnerabilities of WPA?

Answer 6

Susceptible to dictionary and brute-force attacks due to PSKs.

Question 7

What encryption standard is used by WPA2?

Answer 7

Advanced Encryption Standard (AES) with CCMP.

Question 8

What vulnerabilities were discovered in WPA2?

Answer 8

KRACK attacks (Key Reinstallation AttaCKs).

Question 9

What are the main improvements in WPA3?

Answer 9

Protection against offline dictionary attacks, forward secrecy, easier connection methods like Wi-Fi Easy Connect.

Question 10

What is the Dragonfly handshake in WPA3?

Answer 10

A key exchange resistant to active/passive attacks and offline dictionary attacks.

Question 11

What is a downgrade attack in WPA3 transitional mode?

Answer 11

Forcing WPA3 devices to revert to the less secure WPA2 handshake.

Question 12

What does WPA Enterprise use for authentication?

Answer 12

802.1X, often combined with RADIUS servers.

Question 13

What is the primary function of a RADIUS server?

Answer 13

Authentication, Authorization, and Accounting (AAA).

Question 14

What is MAC address filtering?

Answer 14

Allowing network access only to devices with specific MAC addresses.

Question 15

What is an SSID cloak?

Answer 15

Hiding the wireless network name from being broadcast publicly.

Question 16

What security measure encrypts connections at both ends over public networks?

Answer 16

Virtual Private Network (VPN).

Question 17

What tool can be used as a rogue access point for testing?

Answer 17

Wi-Fi Pineapple.

Question 18

What is DHCP and why can it be insecure?

Answer 18

Dynamic Host Configuration Protocol; it dynamically assigns IP addresses, which can be exploited.

Question 19

Why use static IP addresses for security?

Answer 19

Reduces vulnerability by eliminating DHCP attacks.

Question 20

What should you regularly update on a wireless access point to maintain security?

Answer 20

Firmware and software patches.