WEP Security and WLAN Standards Quiz

Questions and Answers

What is a significant limitation of MAC address filtering in network security?

• It allows guest users to easily join the network.
• It cannot accommodate a large number of MAC addresses. (correct)
• It requires continuous updating of device addresses.
• It relies on encryption for protecting data.

What does the initialization vector (IV) in WEP contribute to the encryption process?

• The IV is combined with the WEP key to create a keystream. (correct)
• The IV is a random vector that enhances key strength.
• The IV prevents attempts to breach network security.
• The IV can increase the length of the key.

How often do the IVs in WEP start to repeat, posing a security risk?

• In less than 24 hours
• In less than 7 hours (correct)
• In less than 1 hour
• In less than 48 hours

What is a Collision in the context of WEP packet encryption?

When two packets are derived from the same IV (B)

What cardinal rule of cryptography does WEP violate?

Patterns must not be easily detected. (A)

What is a keystream attack in WEP encryption?

A method to analyze two packets derived from the same IV. (A)

Why is WEP considered to have weak security?

It produces an easily detectable pattern. (B)

What is the primary function of the IEEE 802.11 standard for WLANs?

To provide a technical standard for wireless local area networks (B)

What is a significant vulnerability of open system authentication?

It relies solely on the SSID for authentication (C)

What is the main purpose of MAC address filtering within wireless networks?

To restrict unauthenticated devices from connecting (D)

Which key size is the minimum required for IEEE 802.11 WEP shared secret keys?

64 bits (B)

What flaw exists when the SSID is configured not to be beaconed in a wireless network?

It can lead to difficulties in roaming for devices (D)

What process typically exposes the SSID to potential attackers?

Passive scanning for beacon frames (A)

What aspect does the IEEE 802.11 standard not explicitly define?

How to implement access control (A)

What encryption method was introduced with the IEEE 802.11 standard to protect wireless traffic?

Wired Equivalent Privacy (WEP) (C)

Which of the following describes MAC address filtering?

It allows only designated MAC addresses to connect (D)

Which revision of the IEEE 802.11 standard was approved last?

IEEE 802.11n (B)

What is one of the limitations of MAC address filtering in wireless security?

MAC addresses can be spoofed easily (A)

What type of authentication is considered weak due to a singular authentication factor?

Open system authentication (A)

Which feature is NOT part of the WEP encryption criteria?

Mandatory usage (A)

What characteristic of WEP makes it relatively weak in terms of security?

Vulnerability to brute-force attacks (B)

Flashcards

MAC Address Filtering

A security measure that restricts network access to devices with specific MAC addresses, allowing authorized devices to join the network while blocking others.

MAC Address Spoofing

A type of weakness in MAC address filtering where an attacker can observe the network traffic and identify the MAC addresses of authorized devices to gain unauthorized access.

Wired Equivalent Privacy (WEP)

A security protocol that encrypts data transmitted over wireless networks, using a 64-bit or 128-bit key.

Initialization Vector (IV)

A 24-bit value used in WEP encryption to add randomness to the encryption process.

Default Key

A part of the WEP key, typically 40-bit or 104-bit long, that is used to encrypt data.

Keystream Attack

A cryptographic attack that exploits the weaknesses of WEP by analyzing encrypted packets to find the keystream used to decrypt them.

Collision

A situation in WEP encryption where two different packets are encrypted with the same IV, which can lead to security vulnerabilities.

Keystream

A keystream is a unique sequence of bits used for encryption in WEP. It is generated by combining the IV and the shared secret key.

Wireless Access Control

Controlling who can access a wireless network by limiting access to the access point (AP).

WEP Shared Secret Key

A shared secret key used by both the access point (AP) and devices to encrypt and decrypt wireless data.

64-bit WEP Key

The standard length of a WEP key, often considered weak due to vulnerabilities.

128-bit WEP Key

A longer and supposedly more secure WEP key length.

WEP Passphrase

A text-based passphrase that the system converts into a WEP key.

Wireless Device Authentication

Methods for ensuring the authenticity of a device trying to connect to a wireless network.

Open System Authentication

A simple authentication method where no passwords are required. It's often considered very weak.

Shared Key Authentication

A less secure authentication method that relies on a shared secret key between the device and the AP.

SSID (Service Set Identifier)

The name of the wireless network, used for identification purposes.

Passive Scanning

A process where a wireless device listens for beacon frames to discover available wireless networks.

SSID Discovery

A vulnerability where attackers can easily discover the SSID without taking any active measures.

IEEE 802.11 Security Vulnerabilities

The primary vulnerabilities of IEEE 802.11 security, including Open System Authentication, MAC Address Filtering, and WEP.