ExamGecko
Search Search Login
Home Home / CWNP / CWSP-207
Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

When used as part of a WLAN authentication solution, what is the role of LDAP?
A WLAN is implemented using WPA-Personal and MAC filtering. To what common wireless network attacks is this network potentially vulnerable? (Choose 3)
What statements are true about 802.11-2012 Protected Management Frames? (Choose 2)
Given: AAA is an architectural framework used to provide three separate security components in a network. Listed below are three phrases that each describe one aspect of the AAA framework. Option-1 --- This AAA function is performed first and validates user identify prior to determining the network resources to which they will be granted access. Option-2 --- This function is used for monitoring and auditing purposes and includes the collection of data that identifies what a user has done while connected. Option-3 --- This function is used to designate permissions to a particular user. What answer correctly pairs the AAA component with the descriptions provided above?
A single AP is configured with three separate WLAN profiles, as follows: 1. SSID: ABCData -- BSSID: 00:11:22:00:1F:C3 -- VLAN 10 -- Security: PEAPv0/EAP-MSCHAPv2 with AES-CCMP -- 3 current clients 2. SSID: ABCVoice -- BSSID: 00:11:22:00:1F:C4 -- VLAN 60 -- Security: WPA2-Personal with AES-CCMP -- 2 current clients 3. SSID: Guest -- BSSID: 00:11:22:00:1F:C5 -- VLAN 90 -- Security: Open with captive portal authentication -- 3 current clients Three STAs are connected to ABCData. Three STAs are connected to Guest. Two STAs are connected to ABCVoice. How many unique GTKs and PTKs are currently in place in this scenario?
An attack is under way on the network. The attack is preventing users from accessing resources required for business operations, but the attacker has not gained access to any files or data. What kind of attack is described?
Given: ABC Company is deploying an IEEE 802.11-compliant wireless security solution using 802.1X/EAP authentication. According to company policy, the security solution must prevent an eavesdropper from decrypting data frames traversing a wireless connection. What security characteristics and/or components play a role in preventing data decryption? (Choose 2)
Given: ABC Company is implementing a secure 802.11 WLAN at their headquarters (HQ) building in New York and at each of the 10 small, remote branch offices around the United States. 802.1X/EAP is ABC's preferred security solution, where possible. All access points (at the HQ building and all branch offices) connect to a single WLAN controller located at HQ. Each branch office has only a single AP and minimal IT resources. What security best practices should be followed in this deployment scenario?
You are implementing an 802.11ac WLAN and a WIPS at the same time. You must choose between integrated and overlay WIPS solutions. Which of the following statements is true regarding integrated WIPS solutions?
In order to acquire credentials of a valid user on a public hot-spot network, what attacks may be conducted? Choose the single completely correct answer.

Question 10 - CWSP-207 discussion

Report
Export

Given: WLAN attacks are typically conducted by hackers to exploit a specific vulnerability within a network.

What statement correctly pairs the type of WLAN attack with the exploited vulnerability? (Choose 3)

A.
Management interface exploit attacks are attacks that use social engineering to gain credentials from managers.
Answers
A.
Management interface exploit attacks are attacks that use social engineering to gain credentials from managers.
B.
Zero-day attacks are always authentication or encryption cracking attacks.
Answers
B.
Zero-day attacks are always authentication or encryption cracking attacks.
C.
RF DoS attacks prevent successful wireless communication on a specific frequency or frequency range.
Answers
C.
RF DoS attacks prevent successful wireless communication on a specific frequency or frequency range.
D.
Hijacking attacks interrupt a user's legitimate connection and introduce a new connection with an evil twin AP.
Answers
D.
Hijacking attacks interrupt a user's legitimate connection and introduce a new connection with an evil twin AP.
E.
Social engineering attacks are performed to collect sensitive information from unsuspecting users
Answers
E.
Social engineering attacks are performed to collect sensitive information from unsuspecting users
F.
Association flood attacks are Layer 3 DoS attacks performed against authenticated client stations
Answers
F.
Association flood attacks are Layer 3 DoS attacks performed against authenticated client stations
Suggested answer: C, D, E
Show Answer
asked 16/09/2024
DAVID STAATZ
40 questions
PreviousPreviousNextNext
User
Your answer:
0 comments
Sorted by

Leave a comment first

ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms