Enterprise Authentication Protocols and Security Quiz

Questions and Answers

Which encryption cipher is used in WPA2 to replace RC4?

• WEP
• AES (correct)
• TKIP
• CCMP

What is the main problem with unencrypted wireless traffic?

• Weak encryption
• Replay attacks
• Unauthorized use of the network
• Interception of data (correct)

Which version of WPA was designed to fix vulnerabilities in the WEP standard?

• WPA2
• WPA2-TKIP
• WPA (correct)
• WEP

Which protocol is often used to authenticate connections by wireless and VPN users?

RADIUS (B)

What does the supplicant do during the EAP session?

Sends its own handshake and certificate (A)

Which component is responsible for creating an encrypted tunnel for the supplicant to send credentials securely?

Wireless access point (D)

Which protocol allows a user account to authenticate to a domain controller (DC) over a trusted local cabled segment?

Kerberos (D)

Which mechanism does WPA3 use to replace the vulnerable 4-way handshake in WPA2?

SAE (B)

What is the main purpose of using encryption for management frames in WPA3?

To protect against sniffing (B)

What is the main difference between WPA2 pre-shared key (PSK) authentication and WPA3 simultaneous authentication of equals (SAE)?

The method by which the secret is used to agree session keys (A)

What is the recommended length for a passphrase in WPA2 to mitigate risks from cracking?

14 characters or more (A)

Which of the following is a disadvantage of using personal authentication for wireless networks?

All of the above (D)

What is the advantage of using EAP for enterprise authentication?

All of the above (D)

Which statement about EAP-TLS is true?

EAP-TLS is one of the strongest types of multifactor authentication (D)

What is the purpose of the AAA server in the enterprise authentication workflow?

To determine whether to accept the credential (A)