CWSP-205 Online Practice Questions and Answers

Which of the following security attacks cannot be detected by a WIPS solution of any kind? (Choose 2)

A. Rogue APs

B. DoS

C. Eavesdropping

D. Social engineering

Given: You have a Windows laptop computer with an integrated, dual-band, Wi-Fi compliant adapter. Your laptop computer has protocol analyzer software installed that is capable of capturing and decoding 802.11ac data.

What statement best describes the likely ability to capture 802.11ac frames for security testing purposes?

A. All integrated 802.11ac adapters will work with most protocol analyzers for frame capture, including the Radio Tap Header.

B. Integrated 802.11ac adapters are not typically compatible with protocol analyzers in Windows laptops. It is often best to use a USB adapter or carefully select a laptop with an integrated adapter that will work.

C. Laptops cannot be used to capture 802.11ac frames because they do not support MU-MIMO.

D. Only Wireshark can be used to capture 802.11ac frames as no other protocol analyzer has implemented the proper frame decodes.

E. The only method available to capture 802.11ac frames is to perform a remote capture with a compatible access point.

In order to acquire credentials of a valid user on a public hot-spot network, what attacks may be conducted? Choose the single completely correct answer.

A. Social engineering and/or eavesdropping

B. RF DoS and/or physical theft

C. MAC denial of service and/or physical theft

D. Authentication cracking and/or RF DoS

E. Code injection and/or XSS

What policy would help mitigate the impact of peer-to-peer attacks against wireless-enabled corporate laptop computers when the laptops are also used on public access networks such as wireless hot-spots?

A. Require Port Address Translation (PAT) on each laptop.

B. Require secure applications such as POP, HTTP, and SSH.

C. Require VPN software for connectivity to the corporate network.

D. Require WPA2-Enterprise as the minimal WLAN security solution.

Given: The ABC Corporation currently utilizes an enterprise Public Key Infrastructure (PKI) to allow employees to securely access network resources with smart cards. The new wireless network will use WPA2-Enterprise as its primary authentication solution. You have been asked to recommend a Wi-Fi Alliance-tested EAP method.

What solutions will require the least change in how users are currently authenticated and still integrate with their existing PKI?

A. EAP-FAST

B. EAP-TLS

C. PEAPv0/EAP-MSCHAPv2

D. LEAP

E. PEAPv0/EAP-TLS

F. EAP-TTLS/MSCHAPv2

Joe's new laptop is experiencing difficulty connecting to ABC Company's 802.11 WLAN using 802.1X/EAP PEAPv0. The company's wireless network administrator assured Joe that his laptop was authorized in the WIPS management console for connectivity to ABC's network before it was given to him. The WIPS termination policy includes alarms for rogue stations, roque APs, DoS attacks and unauthorized roaming.

What is a likely reason that Joe cannot connect to the network?

A. Joe disabled his laptop's integrated 802.11 radio and is using a personal PC card radio with a different chipset, drivers, and client utilities.

B. Joe's integrated 802.11 radio is sending multiple Probe Request frames on each channel.

C. An ASLEAP attack has been detected on APs to which Joe's laptop was trying to associate. The WIPS responded by disabling the APs.

D. Joe configured his 802.11 radio card to transmit at 100 mW to increase his SNR. The WIPS is detecting this much output power as a DoS attack.

Your organization required compliance reporting and forensics features in relation to the 802.11ac WLAN they have recently installed. These features are not built into the management system provided by the WLAN vendor. The existing WLAN is managed through a centralized management console provided by the AP vendor with distributed APs and multiple WLAN controllers configured through this console.

What kind of system should be installed to provide the required compliance reporting and forensics features?

A. WNMS

B. WIPS overlay

C. WIPS integrated

D. Cloud management platform

You have been recently hired as the wireless network administrator for an organization spread across seven locations. They have deployed more than 100 APs, but they have not been managed in either an automated or manual process for more than 18 months. Given this length of time, what is one of the first things you should evaluate from a security perspective?

A. The channel widths configured

B. The channels in use

C. The VLANs in use

D. The firmware revision

Select the answer option that arranges the numbered events in the correct time sequence (first to last) for a client associating to a BSS using EAP-PEAPv0/MSCHAPv2.

1.

Installation of PTK

2.

Initiation of 4-way handshake

3.

Open system authentication

4.

802.11 association

5.

802.1X controlled port is opened for data traffic

6.

Client validates server certificate

7.

AS validates client credentials

A. 3--4--6--7--2--1--5

B. 4--3--5--2--7--6--1

C. 5--3--4--2--6--7--1

D. 6--1--3--4--2--7--5

E. 4--3--2--7--6--1--5

F. 3--4--7--6--5--2--1

Given: You have implemented strong authentication and encryption mechanisms for your enterprise

802.11 WLAN using 802.1X/EAP with AES-CCMP.

For users connecting within the headquarters office, what other security solution will provide continuous monitoring of both clients and APs with 802.11-specific tracking?

A. IPSec VPN client and server software

B. Internet firewall software

C. Wireless intrusion prevention system

D. WLAN endpoint agent software

E. RADIUS proxy server