CWSP-208試験無料問題集（122題）「CWNP Certified Wireless Security Professional (CWSP) 認定」

出題：1

Given: You are the WLAN administrator in your organization and you are required to monitor the network and ensure all active WLANs are providing RSNs. You have a laptop protocol analyzer configured.
In what frame could you see the existence or non-existence of proper RSN configuration parameters for each BSS through the RSN IE?

A. Data frames

B. Probe request

C. Beacon

D. CTS

E. RTS

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：2

What is one advantage of using EAP-TTLS instead of EAP-TLS as an authentication mechanism in an 802.11 WLAN?

A. EAP-TTLS does not require an authentication server, but EAP-TLS does.

B. EAP-TTLS supports client certificates, but EAP-TLS does not.

C. EAP-TTLS sends encrypted supplicant credentials to the authentication server, but EAP-TLS uses unencrypted user credentials.

D. EAP-TTLS does not require the use of a certificate for each STA as authentication credentials, but EAP- TLS does.

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：3

The following numbered items show some of the contents of each of the four frames exchanged during the 4- way handshake:
1. Encrypted GTK sent
2. Confirmation of temporal key installation
3. Anonce sent from authenticator to supplicant
4. Snonce sent from supplicant to authenticator, MIC included
Arrange the frames in the correct sequence beginning with the start of the 4-way handshake.

A. 2, 3, 4, 1

B. 1, 2, 3, 4

C. 4, 3, 1, 2

D. 3, 4, 1, 2

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：4

What type of WLAN attack is prevented with the use of a per-MPDU TKIP sequence counter (TSC)?

A. Session hijacking

B. Bit-flipping

C. Forgery

D. Replay

E. Weak-IV

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：5

What drawbacks initially prevented the widespread acceptance and use of Opportunistic Key Caching (OKC)?

A. Sharing cached keys between controllers during inter-controller roaming created vulnerabilities that exposed the keys to attackers.

B. The Wi-Fi Alliance continually delayed the creation of a client certification for OKC, even though it was defined by IEEE 802.11r.

C. Key exchanges during fast roams required processor-intensive cryptography, which was prohibitive for legacy devices supporting only TKIP.

D. Because OKC is not defined by any standards or certification body, client support was delayed and sporadic early on.

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：6

Given: You support a coffee shop and have recently installed a free 802.11ac wireless hot-spot for the benefit of your customers. You want to minimize legal risk in the event that the hot-spot is used for illegal Internet activity.
What option specifies the best approach to minimize legal risk at this public hot-spot while maintaining an open venue for customer Internet access?

A. Implement a captive portal with an acceptable use disclaimer

B. Allow only trusted patrons to use the WLAN

C. Use a WIPS to monitor all traffic and deauthenticate malicious stations

D. Configure WPA2-Enterprise security on the access point

E. Block TCP port 25 and 80 outbound on the Internet router

F. Require client STAs to have updated firewall and antivirus software

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

CWSP-208試験無料問題集「CWNP Certified Wireless Security Professional (CWSP) 認定」