WLAN Security Chapter 10 Quiz

Questions and Answers

What type of attacks can a WLAN be exposed to according to the text?

Attacks from disgruntled employees only

Attacks from unintentional employees

Attacks from intruders and would-be hackers (correct)

Attacks from outsiders only

How does the airborne nature of WLAN transmission affect network security?

It enables intruders to attack from any direction (correct)

It only works effectively indoors

It restricts the network to only a specific direction

It enhances the security of the network

What risk is associated with employees working on laptops outside with WLAN access?

Improving network performance

Increased productivity

Decreased connection stability

Exposing the network to potential threats (correct)

How do WLAN traffic travel within a building according to the text?

Radio waves that walls cannot completely constrain

Who can potentially access a network using a Pringles can antenna according to the text?

Intruders and would-be hackers from any direction

What is the primary purpose of a passive attack in a WLAN?

To eavesdrop and gather valuable information

Which tool is commonly used in passive attacks to acquire WEP keys?

Wireless LAN sniffers

What is the main goal of an active attack in a WLAN?

Gain unauthorized access to valuable data

Which technique is employed in jamming to disrupt a wireless network?

Overwhelming RF signals

What distinguishes an active attack from a passive attack in a WLAN?

Active attacks aim to gain access to a server or manipulate the network

What characterizes jamming as a technique used in WLAN attacks?

Intentional or unintentional overwhelming of RF signals

What is the main encryption algorithm used in Wired Equivalent Privacy (WEP)?

RC4

In WEP, what is the main condition for successful communication between devices?

Matching MAC addresses

What is a notable weakness of WEP in terms of data encryption?

Failure to encrypt Layer 2 headers

What type of attacks is WEP not able to protect against?

Man-in-the-middle attacks

Which security protocol was developed by the Wi-Fi Alliance as an improvement over WEP?

WPA2

What type of encryption does WEP utilize?

Stream cipher

What are some common threats to wireless networks?

Interception of data, Wireless intruders, Denial of Service (DoS) Attacks

What could be a result of a Wireless DoS attack?

Improperly configured devices

How can the risk of a DoS attack due to improperly configured devices be minimized?

Harden all devices, keep passwords secure, create backups

What is a rogue AP?

A wireless router placed by a malicious user

What can a rogue AP be used for by an attacker?

Capturing MAC addresses and data packets

How can a personal network hotspot become a rogue AP?

By connecting it to a corporate network without authorization

What is one way organizations can prevent the installation of rogue APs?

Configuring WLCs with rogue AP policies

Which type of attack involves the hacker intercepting data between two legitimate entities?

Evil Twin AP Attack

What is a common method used by attackers in a wireless MITM attack?

Introducing a rogue AP with the same SSID as a legitimate AP

How can organizations defeat a MITM attack effectively?

By identifying legitimate devices on the WLAN and monitoring for abnormal devices or traffic

Why is authenticating users important in preventing a MITM attack?

To ensure that only authorized devices are connected to the network

Study Notes

WLAN Attacks and Vulnerabilities

• WLANs are exposed to various attacks including passive attacks, active attacks, and denial-of-service (DoS) attacks.
• The airborne nature of WLAN transmission allows signals to potentially be intercepted by unauthorized users floating within range, raising security vulnerabilities.
• Employees using laptops with WLAN access outside face risks of exposure to eavesdroppers and potential data interception.

WLAN Traffic Behavior

• WLAN traffic can propagate through walls and ceilings, allowing signals to travel beyond intended physical boundaries within a building.

Unusual Access Methods

• A Pringles can antenna can amplify signals, enabling someone within range to potentially access the WLAN without authorization.

Attack Types

• The primary purpose of a passive attack involves eavesdropping or monitoring without altering information.
• WEP keys are commonly acquired using tools like Aircrack-ng during passive attacks.
• The main goal of an active attack involves intercepting and altering data being transmitted over the network.

Jamming Techniques

• Jamming disrupts a wireless network by overwhelming it with interference, making valid communication difficult.
• Active attacks differ from passive attacks in that they actively disrupt or create changes in the network traffic rather than merely monitoring it.

WEP and Its Security Flaws

• WEP employs the RC4 encryption algorithm for securing WLAN data.
• Successful communication in WEP requires both devices to share the same encryption key for data exchange.
• A key weakness of WEP lies in its vulnerability to key recovery attacks due to improper key management and short key lengths.
• WEP fails to protect against replay attacks, where attackers capture and resend valid data packets.

Enhanced Security Measures

• WPA (Wi-Fi Protected Access) was developed by the Wi-Fi Alliance as an improvement over WEP.
• WEP utilizes stream cipher encryption, but its inadequate security has led to its deprecation in favor of more secure protocols.

Common Threats to Wireless Networks

• Common threats include rogue access points (APs), eavesdropping, and wireless DoS attacks.
• A Wireless DoS attack can result in service disruptions, preventing legitimate users from accessing the network.

Mitigating Risks

• The risk of DoS attacks due to misconfigured devices can be minimized through proper network configuration and regular audits.
• A rogue AP is an unauthorized access point installed on a network, potentially used by attackers to bypass security protocols and intercept sensitive data.
• A personal network hotspot can inadvertently become a rogue AP if not properly secured or monitored.

Prevention Strategies

• Organizations can prevent the installation of rogue APs by enforcing strict policies regarding device authentication and network access control.

MITM (Man-in-the-Middle) Attacks

• A MITM attack involves intercepting and potentially altering communications between two legitimate entities.
• Attackers commonly use techniques like packet sniffing or ARP spoofing to execute wireless MITM attacks.
• Organizations can defeat MITM attacks effectively by implementing strong encryption protocols and utilizing VPNs for secure communication.
• Authenticating users plays a crucial role in preventing MITM attacks by ensuring that only verified devices access the network.

Description

Test your knowledge on WLAN security objectives including WLAN Security protocols, WEP, WPA, types of attacks, and WLAN threats. Learn about the Wired Equivalent Privacy (WEP) and its encryption algorithm using a pseudorandom number generator and the RC4 stream cipher.