WiFi Security: WEP, WPA, and WPA-2

Questions and Answers

What is the primary goal of WEP in WiFi security?

• To provide authentication for users
• To provide data confidentiality similar to a wired network (correct)
• To encrypt data using the AES cipher
• To improve the speed of WiFi connections

What is the encryption method used by WEP?

• RC4 (correct)
• MD5
• AES
• SHA-256

What is the main problem with WEP's use of the RC4 cipher?

• The cipher is too slow
• The starting variables must be unique, but are easily duplicated (correct)
• The cipher is not widely supported
• The cipher is too complex

How many distinct possibilities are there for 24-bit starting variables in WEP?

2^24 (B)

What is the estimated chance of duplicate starting variables occurring in WEP every 5000 packets?

52% (B)

What is the attack that can be used to reverse engineer a WEP key by finding a correct starting variable?

Related key attack (D)

What is the main difference between WPA and WPA2?

WPA2 uses CCMP, a derivative of AES, for password encryption (A)

What type of attack is a Deauthentication Attack?

Man-in-the-middle attack (C)

What is the purpose of a Deauthentication Attack?

To force computers to connect to a hacker's access point (D)

What is the main goal of an Evil Twin attack?

To deceive someone into connecting to a fake access point (A)

What is the purpose of a Denial of Service (DoS) attack?

To shut down an access point and prevent access to it (C)

What is the method used by a hacker to perform a DoS attack on an access point?

Bombarding the access point with pings (D)

What is the primary advantage of WPA over WEP?

Introduces the Temporal Key Integrity Protocol (TKIP) (B)

What is the purpose of the Michael algorithm in WPA?

To provide a stronger checksum (A)

What is a remaining vulnerability in WPA despite its improvements?

The ability to spoof shorter packets (D)

What makes routers with WPS buttons still vulnerable to attacks?

The presence of vulnerabilities in WPS (C)

What is the main reason brute force attacks are still possible in WPA?

The finite number of possible password combinations (A)

What is the motivation behind developing an improved security protocol beyond WPA?

To eliminate vulnerabilities in WPA and WPS (D)

What is the primary purpose of Network Cloaking?

To impede casual snoopers (D)

What is the drawback of using MAC Filtering?

It can be easily hacked using MAC Spoofing (A)

What is the purpose of RF Shielding?

To reduce the range of WiFi access (D)

What is the vulnerability of Network Cloaking?

It can be easily hacked by advanced hackers (D)

What is the main advantage of MAC Filtering?

It allows for whitelisting and blacklisting of devices (D)

What is the weakness of RF Shielding?

It is vulnerable to moles from the inside (A)

Flashcards

WEP Goal

WEP aims to provide data confidentiality like a wired network.

WEP Encryption

WEP uses RC4 encryption.

WEP RC4 Problem

WEP's RC4 has starting variables easily duplicated, leading to vulnerabilities.

WEP Starting Variables

WEP has 2^24 possible starting variables leading to weak keys.

WEP Duplicate Chance

There's a high chance of duplicate starting variables in WEP, every 5000 packets.

Related Key Attack

An attack to reverse engineer a WEP key by finding a correct starting variable.

WPA vs WPA2 Difference

WPA2 uses CCMP (a derivative of AES) for encryption, while WPA uses TKIP.

Deauthentication Attack

A man-in-the-middle attack that forces devices to connect to a hacker's access point.

Evil Twin Attack

A deceptive attack where a hacker creates a fake access point.

DoS Attack

Denial of Service attacks flood an access point to shut it down.

DoS Method

Hackers use pings to overwhelm an access point and shut it down.

WPA Improvement

WPA improves upon WEP by introducing TKIP (Temporal Key Integrity Protocol).

Michael Algorithm

A stronger checksum used in WPA to verify data integrity.

WPA Vulnerability

WPA still has a vulnerability to attacks related to packet spoofing.

WPS Vulnerability

Routers with WPS buttons can still be exploited because of inherent vulnerabilities.

WPA Brute Force

Brute force attacks are still possible in WPA because of the finite number of passwords.

Improved Security Protocol

Protocols beyond WPA aim to fix vulnerabilities in WPA and WPS, ensuring enhanced security.

Network Cloaking

Network cloaking aims to make a network harder to detect by casual snoopers.

MAC Filtering Weakness

MAC filtering can be easily hacked using MAC spoofing attacks.

RF Shielding Purpose

RF shielding reduces the range of WiFi access.

Network Cloaking Vulnerability

Network cloaking can still be hacked by advanced hackers.

MAC Filtering Advantage

MAC filtering allows controlling which devices connect by whitelisting or blacklisting.

RF Shielding Weakness

RF shielding can be compromised if someone inside knows how to do it.