CWNP CWSP-205 問題集

質問 1：
What disadvantage does EAP-TLS have when compared with PEAPv0 EAP/MSCHAPv2 as an 802.11 WLAN security solution?
A. EAP-TLS cannot establish a secure tunnel for internal EAP authentication.
B. EAP-TLS is supported only by Cisco wireless infrastructure and client devices.
C. Fast/secure roaming in an 802.11 RSN is significantly longer when EAP-TLS is in use.
D. EAP-TLS requires extensive PKI use to create X.509 certificates for both the server and all clients, which increases administrative overhead.
E. EAP-TLS does not protect the client's username and password inside an encrypted tunnel.
正解：D

質問 2：
A WLAN is implemented using WPA-Personal and MAC filtering.
To what common wireless network attacks is this network potentially vulnerable? (Choose 3)
A. ASLEAP
B. Offline dictionary attacks
C. MAC Spoofing
D. DoS
正解：B,C,D

質問 3：
As the primary security engineer for a large corporate network, you have been asked to author a new security policy for the wireless network. While most client devices support 802.1X authentication, some legacy devices still only support passphrase/PSK-based security methods.
When writing the 802.11 security policy, what password-related items should be addressed?
A. Password complexity should be maximized so that weak WEP IV attacks are prevented.
B. Static passwords should be changed on a regular basis to minimize the vulnerabilities of a PSK-based authentication.
C. Certificates should always be recommended instead of passwords for 802.11 client authentication.
D. EAP-TLS must be implemented in such scenarios.
E. MSCHAPv2 passwords used with EAP/PEAPv0 should be stronger than typical WPA2PSK passphrases.
正解：B

質問 4：
Given: You view a protocol analyzer capture decode with the following protocol frames listed in the following order (excluding the ACK frames):
1) 802.11 Probe Request and 802.11 Probe Response 2) 802.11 Auth and another 802.11 Auth 2) 802.11 Assoc Req and 802.11 Assoc Rsp 4) EAPOL-Start 5) EAP Request and EAP Response 6) EAP Request and EAP Response 7) EAP Request and EAP Response 8) EAP Request and EAP Response 9) EAP Request and EAP Response 10) EAP Success 19) EAPOL-Key (4 frames in a row)
What are you seeing in the capture file? (Choose 4)
A. WPA2-Personal authentication
B. Active Scanning
C. WPA2-Enterprise authentication
D. 802.1X with Dynamic WEP
E. Wi-Fi Protected Setup with PIN
F. 4-Way Handshake
G. 802.11 Open System authentication
正解：B,C,F,G

質問 5：
Given: ABC Company has recently installed a WLAN controller and configured it to support WPA2-Enterprise security. The administrator has configured a security profile on the WLAN controller for each group within the company (Marketing, Sales, and Engineering).
How are authenticated users assigned to groups so that they receive the correct security profile within the WLAN controller?
A. The RADIUS server sends the list of authenticated users and groups to the WLAN controller as part of a 4-Way Handshake prior to user authentication.
B. The RADIUS server sends a group name return list attribute to the WLAN controller during every successful user authentication.
C. The WLAN controller polls the RADIUS server for a complete list of authenticated users and groups after each user authentication.
D. The RADIUS server forwards the request for a group attribute to an LDAP database service, and LDAP sends the group attribute to the WLAN controller.
正解：B

質問 6：
Given: You are using a Wireless Aggregator utility to combine multiple packet captures. One capture exists for each of channels 1, 6 and 11. What kind of troubleshooting are you likely performing with such a tool?
A. Interference source location.
B. Wireless adapter failure analysis.
C. Narrowband DoS attack detection.
D. Fast secure roaming problems.
正解：D

質問 7：
You are using a protocol analyzer for random checks of activity on the WLAN. In the process, you notice two different EAP authentication processes. One process (STA1) used seven EAP frames (excluding ACK frames) before the 4-way handshake and the other (STA2) used 11 EAP frames (excluding ACK frames) before the 4-way handshake.
Which statement explains why the frame exchange from one STA required more frames than the frame exchange from another STA when both authentications were successful? (Choose the single most probable answer given a stable WLAN.)
A. STA1 is a reassociation and STA2 is an initial association.
B. STA1 and STA2 are using different EAP types.
C. STA2 has retransmissions of EAP frames.
D. STA1 is a TSN, and STA2 is an RSN.
E. STA1 and STA2 are using different cipher suites.
正解：B

質問 8：
Given: When the CCMP cipher suite is used for protection of data frames, 16 bytes of overhead are added to the Layer 2 frame. 8 of these bytes comprise the MIC.
What purpose does the encrypted MIC play in protecting the data frame?
A. The MIC is used as a first layer of validation to ensure that the wireless receiver does not incorrectly process corrupted signals.
B. The MIC is a random value generated during the 4-way handshake and is used for key mixing to enhance the strength of the derived PTK.
C. The MIC provides for a cryptographic integrity check against the data payload to ensure that it matches the original transmitted data.
D. The MIC is a hash computation performed by the receiver against the MAC header to detect replay attacks prior to processing the encrypted payload.
正解：C

質問 9：
What elements should be addressed by a WLAN security policy? (Choose 2)
A. Social engineering recognition and mitigation techniques
B. End-user training for password selection and acceptable network use
C. The exact passwords to be used for administration interfaces on infrastructure devices
D. Enabling encryption to prevent MAC addresses from being sent in clear text
E. How to prevent non-IT employees from learning about and reading the user security policy
正解：A,B