CWNP CWSP-205 Exam Questions

Question 6 of 119

Given: One of the security risks introduced by WPA2-Personal is an attack conducted by an authorized network user who knows the passphrase. In order to decrypt other users traffic, the attacker must obtain certain information from the 4-way handshake of the other users.
In addition to knowing the Pairwise Master Key (PMK) and the supplicants address (SA), what other three inputs must be collected with a protocol analyzer to recreate encryption keys? (Choose 3)

Authenticator nonce

Supplicant nonce

Authenticator address (BSSID)

GTKSA

Authentication Server nonce

Correct Answer: A, B, C

Question 7 of 119

What is a primary criteria for a network to qualify as a Robust Security Network (RSN)?

Token cards must be used for authentication.

Dynamic WEP-104 encryption must be enabled.

WEP may not be used for encryption.

WPA-Personal must be supported for authentication and encryption.

WLAN controllers and APs must not support SSHv1.

Correct Answer: C

Question 8 of 119

Given: You are using a Wireless Aggregator utility to combine multiple packet captures. One capture exists for each of channels 1, 6 and 11. What kind of troubleshooting are you likely performing with such a tool?

Wireless adapter failure analysis.

Interference source location.

Fast secure roaming problems.

Narrowband DoS attack detection.

Correct Answer: C

Question 9 of 119

Which of the following security attacks cannot be detected by a WIPS solution of any kind? (Choose 2)

Rogue APs

DoS

Eavesdropping

Social engineering

Correct Answer: C, D

Question 10 of 119

Given: You have a Windows laptop computer with an integrated, dual-band, Wi-Fi compliant adapter. Your laptop computer has protocol analyzer software installed that is capable of capturing and decoding 802.11ac data.
What statement best describes the likely ability to capture 802.11ac frames for security testing purposes?

All integrated 802.11ac adapters will work with most protocol analyzers for frame capture, including the Radio Tap Header.

Integrated 802.11ac adapters are not typically compatible with protocol analyzers in Windows laptops. It is often best to use a USB adapter or carefully select a laptop with an integrated adapter that will work.

Laptops cannot be used to capture 802.11ac frames because they do not support MU-MIMO.

Only Wireshark can be used to capture 802.11ac frames as no other protocol analyzer has implemented the proper frame decodes.

The only method available to capture 802.11ac frames is to perform a remote capture with a compatible access point.

Correct Answer: B