CWSP-206試験無料問題集（138題）「CWNP CWSP Certified Wireless Security Professional 認定」

出題：1

Which of the following protocols uses separate control and data connections between the client and server applications?

A. SMTP

B. SCP

C. FTP

D. HTTP

正解：C 解答を投票する

出題：2

Which of the following policies are considered as a good starting point while designing a wireless security policy document? Each correct answer represents a complete solution. Choose all that apply.

A. Rogue AP policy

B. Functional security policy

C. Protocol policy

D. General security policy

正解：A,B,D 解答を投票する

出題：3

Which of the following is a wireless device that is created to allow a cracker to conduct a man-in- the-middle attack?

A. WLAN controller

B. Lightweight Access Point

C. Rogue access point

D. Protocol analyzer

正解：C 解答を投票する

出題：4

In the basic 4-way handshake used in secure 802.11 networks, what is the purpose of the ANonce and SNonce?

A. They are added together and used as the GMK, from which the GTK is derived.

B. They are used to pad Message 1 and Message 2 so each frame contains the same number of bytes.

C. They are input values used in the derivation of the Pairwise Transient Key.

D. The IEEE 802.11 standard requires that all encrypted frames contain a nonce to serve as a Message Integrity Check (MIC).

正解：C 解答を投票する

出題：5

A large enterprise is designing a secure, scalable, and manageable 802.11n WLAN that will support thousands of users. The enterprise will support both 802.1X/ EAP-TTLS and PEAPv0/MSCHAPv2. Currently, the company is upgrading network servers as well and will replace their existing Microsoft IAS implementation with Microsoft NPS, querying Active Directory for user authentication. For this organization, as they update their WLAN infrastructure, what WLAN controller feature will likely be least valuable?

A. Internal RADIUS server

B. WPA2-Enterprise authentication/encryption

C. WIPS support and integration

D. 802.1Q VLAN trunking

E. SNMPv3 support

正解：A 解答を投票する

出題：6

Which of the following are the security measures that are needed to maintain the security of wireless LAN?
Each correct answer represents a complete solution. Choose all that apply.

A. WLAN controller

B. WIPS

C. WIDS

D. Firewalls

正解：B,C,D 解答を投票する

出題：7

In a security penetration exercise, a WLAN consultant obtains the WEP key of XYZ Corporation's wireless network. Demonstrating the vulnerabilities of using WEP, the consultant uses a laptop running a software AP in an attempt to hijack the authorized user's connections. XYZ's legacy network is using 802.11n APs with 802.11b, 11g, and 11n client devices. With this setup, how can the consultant cause all of the authorized clients to establish Layer 2 connectivity with the software access point?

A. When the RF signal between the clients and the authorized AP is temporarily disrupted and the consultant's software AP is using the same SSID on a different channel than the authorized AP, the clients will reassociate to the software AP.

B. If the consultant's software AP broadcasts Beacon frames that advertise 802.11g data rates that are faster rates than XYZ's current 802.11b data rates, all WLAN clients will reassociate to the faster AP.

C. All WLAN clients will reassociate to the consultant's software AP if the consultant's software AP provides the same SSID on any channel with a 10 dB SNR improvement over the authorized AP.

D. A higher SSID priority value configured in the Beacon frames of the consultant's software AP will take priority over the SSID in the authorized AP, causing the clients to reassociate.

正解：A 解答を投票する

出題：8

Which of the following is an infrastructure system that allows the secure exchange of data over an unsecured network?

A. PKI

B. PTK

C. GTK

D. PMK

正解：A 解答を投票する

出題：9

XYZ Company has recently installed a controller-based WLAN and is using a RADIUS server to query authentication requests to an LDAP server. XYZ maintains user-based access policies and would like to use the RADIUS server to facilitate network authorization. What RADIUS feature could be used by XYZ to assign the proper network permissions to users during authentications?

A. RADIUS can send a DO-NOT-AUTHORIZE demand to the authenticator to prevent the STA from gaining access to specific files, but may only employ this in relation to Linux servers.

B. RADIUS can reassign a client's 802.11 association to a new SSID by referencing a username-to- SSID mapping table in the LDAP user database.

C. The RADIUS server can communicate with the DHCP server to issue the appropriate IP address and VLAN assignment to users.

D. The RADIUS server can support vendor-specific attributes in the ACCESS-ACCEPT response, which can be used for user policy assignment.

正解：D 解答を投票する

出題：10

Which of the following types of attacks entices a user to disclose personal information such as social security number, bank account details, or credit card number?

A. Password guessing attack

B. Spoofing

C. Replay attack

D. Phishing

正解：D 解答を投票する

CWSP-206試験無料問題集「CWNP CWSP Certified Wireless Security Professional 認定」