Wireless Network Authentication Methods

Questions and Answers

What is one of the challenges associated with wireless networks mentioned in the text?

Implementing more complex network infrastructure

Increasing the speed of data transmission

Reducing the number of authorized users

Maintaining confidentiality of data (correct)

What is a common method mentioned for ensuring that only authorized users can connect to a wireless network?

Allowing anonymous connections

Multi-factor authentication (correct)

Disabling encryption for easy access

Broadcasting usernames publicly

Why is encrypting data important in wireless network communication, as stated in the text?

To prevent unauthorized individuals from listening to the packets (correct)

To increase the signal strength of the network

To reduce the need for authentication

To speed up data transfer rates

What is the purpose of a message integrity check (MIC) in wireless network communication?

To ensure data is sent without any changes (C)

What is the root challenge highlighted in the text regarding sending data over wireless networks?

The vulnerability of information being intercepted from the air (B)

Why does the text suggest encrypting all data sent over wireless networks?

To render intercepted packets unreadable (D)

Which key exchange method is built into the WPA3 standard?

Dragonfly handshake (B)

What authentication method usually requires a pre-shared key for wireless networks?

WPA2-Personal (PSK) (C)

What type of authentication method uses a central backend server like a RADIUS server?

802.1X connectivity (D)

What protocol is used to communicate with an authentication server for centralized authentication?

RADIUS (C)

In the context of network authentication, what does AAA stand for?

Authentication, Authorization, Accounting (C)

Which type of network connection is RADIUS commonly used for?

Any type of network connection (B)

What type of system does not require any authentication to connect to the network?

Open system (A)

What is the main purpose of utilizing a RADIUS server for authentication?

To centralize and manage authentication requests from multiple devices (D)

What type of connectivity typically involves logging in with a username and password instead of using a pre-shared key?

802.1X connectivity (D)

Which block cipher mode does WPA2 use for data confidentiality and message integrity check?

CCMP (A)

When was WPA3 introduced as an enhanced version of WPA2?

2018 (D)

What encryption method does WPA3 use for authenticating pre-shared keys, providing mutual authentication?

SAE (B)

What is the block cipher mode introduced with WPA3 that is stronger and more powerful compared to CCMP?

GCMP (D)

What security vulnerability is associated with pre-shared keys in WPA2 networks due to the four way handshake process?

Brute force attack (C)

What type of authentication method does WPA3 employ to ensure both the user and the access point are legitimate with pre-shared keys?

Mutual authentication (B)

What does SAE stand for in the context of WPA3 security for authenticating pre-shared keys?

Simultaneous Authentication of Equals (A)

What is the full name of the block cipher mode used in WPA2?

CBC-MAC (C)

What benefit does WPA3 provide over WPA2 in terms of sending key information across the network?

Does not send any key information across the network (D)

What authentication method is commonly associated with Cisco devices?

TACACS (A)

Which authentication method supports single sign on?

Kerberos (B)

In what year was Kerberos developed?

1980s (C)

What type of authentication method is commonly used in Windows domains?

Kerberos (C)

Which authentication method involves the use of cryptographic tickets?

Kerberos (D)

What is an example of multi-factor authentication?

Providing smart card credentials (C)

Which factor of authentication involves something you have?

Smart card (B)

What enables single sign on functionality in Kerberos?

Central authentication server (A)

What authentication method was released as an open standard in 1993?

TACACS+ (B)

What is another term for multi-factor authentication?

Two-factor authentication (A)

Study Notes

• Wireless networks face challenge of maintaining data confidentiality and ensuring only authorized individuals access data.
• Authentication required before connecting to wireless network, often involving a username and password, and possibly multi-factor authentication.
• Data sent over wireless networks must be encrypted to protect against unauthorized access.
• WPA2 and WPA3 are common types of wireless encryption, with WPA2 using CCMP block cipher mode and WPA3 using GCMP.
• WPA2 has security issue with pre-shared keys, allowing attackers to capture hash during four-way handshake and perform brute force attacks.
• WPA3 introduces mutual authentication method called SAE, removing possibility of attackers gaining access to hash and performing brute force attacks.
• Authentication servers used to manage logins and authentication for devices on network, allowing centralization and easier management.
• RADIUS and TACACS are common protocols for communicating with authentication servers, with RADIUS being widely used and supported.
• Kerberos is authentication method used for logging into Windows domains, supporting single sign-on.

Description

Learn about different methods for authentication on wireless networks, including the key exchange method built into the WPA3 standard known as the dragonfly handshake. Choose the right authentication method when setting up your access point.