An attacker identified that a user and an access point are both compatible with WPA2 and WPA3 encryption. The attacker installed a rogue access point with only
WPA2 compatibility in the vicinity and forced the victim to go through the WPA2 four-way handshake to get connected. After the connection was established, the attacker used automated tools to crack WPA2-encrypted messages.
What is the attack performed in the above scenario?
The attack described in the scenario involves an attacker using a rogue access point that only supports WPA2, even though the user and the access point support both WPA2 and WPA3. By forcing the user to connect using WPA2 instead of the more secure WPA3, the attacker exploits the backward compatibility of the devices. This type of attack is called a downgrade security attack, where the attacker pushes the communication to use a less secure protocol that they can exploit more easily.
Module 16 Page 2306 CEH Training v11: Downgrade Security Attacks To launch this attack, the client and AP should support both WPA3 and WPA2 encryption mechanisms. Here, the attacker forces the user to follow the older encryption method, WPA2, to connect to the network. Here is one way to implement a downgrade security attack: Exploiting backward compatibility: If a user and AP are compatible with both WPA2 and WPA3 encryption mechanisms, then the attacker installs a rogue AP with only WPA2 compatibility in the vicinity and forces the client to go through the four-way handshake (WPA2) to get connected. Once the connection is established, the attacker uses all the attack tools available to exploit or crack the WPA2 encryption.
Correct:It is downgrade based on CEHv11
In the online version of the book at page 2322, but you are right.
Downgrade security attack
Answer is C.
C is the answer
WPA3 Encryption Cracking Downgrade Security Attacks - The client and AP compatiable with both WPA3 and WPA2 encryption mechanisms. Then the attacker installs a rogue AP with only WPA2 compatibility in the vicinity and forces the client to go through the four-way handshake (WPA2) to get connected. Once the connection is established, the attacker uses all the attack tools available to exploit or crack the WPA2 encryption. (P.2322/2306)
timing based attack is the answer
C is the answer
answer is C
C is the correct answer, the rest are all side channel attack. But why examtopics is making this kind of mistake we expect accurate answer from this platform
C - it is downgrade attack
i THINK c
As it is mentioned in the question that-"An attacker identified that a user and an access point are both compatible with WPA2 and WPA3 encryption",the attacker uses this knowledge for attack.SO this is Side channel attack.
In the tv series Deutschland 83 season 1 ep 3 the spy plants a microphone under the secretary's desk and asks her to type the text of a song, the bug under the desk transmits the sound of the keystrokes and the letters are identified because of the control text (the song) after that trough the sound of the typewriter the spies are able to reconstruct what she is typing. This is an example of a side-channel attack. The question on hand is a downgrade attack. "C" is the right answer.
C is the closest answer.
Side Channel Attack --> D
Downgrade security attack