Chapter 13 Wireless and Mobile Security

Questions and Answers

What distinguishes active RFID tags from passive RFID tags?

Passive tags can communicate more quickly.

Passive tags have their own power source.

Active tags always send signals. (correct)

Active tags are powered by the reader.

Which frequency range is typically used for applications requiring short-range communication?

Ultra-high-frequency RFID

Very high-frequency RFID

Low-frequency RFID (correct)

High-frequency RFID

What is a key advantage of high-frequency RFID tags compared to low-frequency ones?

Higher power requirements.

Slower data transmission rates.

Longer readable range up to a meter. (correct)

Exclusive use for entry access.

In what scenarios are ultra-high-frequency RFID tags most beneficial?

When readers can be placed far away from the tags.

What potential vulnerability exists with RFID tags?

They can be cloned or modified.

What is a common application of high-frequency RFID tags?

Inventory management and antitheft purposes.

How do semi-active RFID tags function?

They rely on energy from the reader but have a battery for their circuits.

What characteristic is common to all RFID tags, regardless of type?

They must be read by a reader.

What is a common vulnerability associated with mobile devices?

Jailbreaking

Which of the following is a consideration for wireless network installation?

Heat maps

Which mobile device management deployment model allows users to choose their own device while ensuring security compliance?

Choose your own device (CYOD)

What is a key characteristic of wireless networks compared to wired networks?

Signals can be intercepted outside owned spaces

Which protocol provides enhanced security for Wi-Fi networks?

Wi-Fi Protected Access 3 (WPA3)

Which of the following is NOT a common connection method for mobile devices?

Ethernet

What is a recommended strategy for protecting data in wireless networks?

Implement cryptographic protocols

In wireless security settings, which service is used for user authentication?

Remote Authentication Dial-in User Service (RADIUS)

What is a primary consideration in the design of a wireless network?

The placement and configuration of wireless access points

What is the purpose of conducting a site survey during wireless network design?

To determine existing networks and assess location options for access points

Which factor can decrease the performance of a wireless network?

Access points using the same channel within range of each other

Why is limiting signal reach important in a wireless network design?

To prevent unauthorized access to the network from outside areas

What tools are commonly used during a site survey?

Wireless signal strength testing tools

In what scenario is network design typically included in the overall planning process?

In new construction projects

Which of the following attacks can undermine wireless security and should be known by individuals designing networks?

Sideloading and jailbreaks

What is the primary challenge associated with multiple wireless access points in a network?

They can significantly reduce network performance if not configured properly

What is the primary function of modern enterprise wireless controller systems regarding access points?

Detect new access points in deployment areas

Which technique involves sending unsolicited messages to Bluetooth-enabled devices?

Bluejacking

What characteristic makes Bluetooth devices susceptible to impersonation attacks?

Lack of mutual authentication

What is bluesnarfing typically aimed at gathering?

Contact lists and other personal information

What is the recommended action to enhance the security of Bluetooth devices when not in use?

Turn off Bluetooth if it is not absolutely needed.

Which feature allows wireless intrusion detection systems to determine if an access point is connected to a network?

Wireless network testing combined with wired network logs

What is a common issue with security measures on Bluetooth devices?

Use of easily guessed pairing codes

Which method is commonly used by attackers to force a device to disconnect from its access point?

Sending a deauthentication frame.

What does WPA3 provide to prevent deauthentication attacks?

Protected management frames.

As of May 2020, what has been indicated regarding Bluetooth Impersonation Attacks (BIAs)?

They remain theoretical and were not seen in real attacks

What should be done if devices allow a default pairing code to be set?

Change it to a more secure code.

What does the long-term key established during the Bluetooth pairing process facilitate?

Session key generation for communication security

What type of attack involves spoofing a victim's wireless MAC address?

Disassociation attack.

Why are many Bluetooth devices still vulnerable today?

The Bluetooth security model has not improved.

What can attackers achieve by forcing a device to reconnect to the network?

Capture information during reconnection.

Which of the following is a potential vulnerability of embedded Bluetooth devices?

They are typically no longer updated by manufacturers.

Study Notes

Wireless and Mobile Security Overview

• Wireless networks present unique security challenges compared to wired networks due to signal broadcasting and external accessibility.
• Many commercial wireless networks are not regulated by customers, making traffic vulnerable to potential threats.

RFID Technology

• RFID systems use active, semi-active, or passive tags to transmit information.
• Tags operate on three frequency ranges:
  • Low-frequency RFID: Used for short-range applications, such as entry access, subject to inconsistent standards globally.
  • High-frequency RFID: Supports near-field communication and offers a longer readable range, suitable for various applications, including inventory management.
  • Ultra-high-frequency RFID: Fastest reading with the longest range, effective in scenarios requiring distance from readers.
• RFID tags are susceptible to attacks, including destruction, cloning, and traffic interception.

Bluetooth Security Threats

• Bluetooth attacks include bluejacking (sending unsolicited messages) and bluesnarfing (unauthorized data access).
• Pairing codes for Bluetooth devices are often weak, leading to vulnerabilities.
• Bluetooth impersonation attacks exploit weaknesses in mutual authentication and role-switching within Bluetooth specs, prompting concerns for device security.

Wireless Attack Techniques

• Disassociation attacks force devices to disconnect, offering attackers a chance to initiate reconnection processes with malicious setups.
• The deauthentication frame can be spoofed to disconnect a device, and while WPA2 networks are vulnerable to this, WPA3 enhances security with protected management frames.

Network Design Considerations

• Effective Wi-Fi network design demands optimal placement and configuration of wireless access points (WAPs) to ensure performance and security.
• Conducting site surveys is crucial to gauge existing network configurations and identify suitable WAP locations, particularly in established structures.
• Wireless signal must be contained within intended spaces to prevent unauthorized external access, necessitating careful planning during the deployment phase.

Description

This quiz explores key concepts from Chapter 13 on Wireless and Mobile Security, aligning with the CompTIA Security+ exam objectives. It focuses on vulnerabilities in mobile devices such as side loading and jailbreaking, as well as strategies for data protection and security operations. Test your knowledge and prepare for the exam with these critical topics.