CWNP CWSP-205 問題集

質問 1：
When implementing a WPA2-Enterprise security solution, what protocol must the selected RADIUS server support?
A. LWAPP, GRE, or CAPWAP
B. IPSec/ESP
C. LDAP
D. CCMP and TKIP
E. EAP
正解：E

質問 2：
What policy would help mitigate the impact of peer-to-peer attacks against wireless-enabled corporate laptop computers when the laptops are also used on public access networks such as wireless hot-spots?
A. Require WPA2-Enterprise as the minimal WLAN security solution.
B. Require VPN software for connectivity to the corporate network.
C. Require Port Address Translation (PAT) on each laptop.
D. Require secure applications such as POP, HTTP, and SSH.
正解：B

質問 3：
Given: The Marketing department's WLAN users need to reach their file and email server as well as the Internet, but should not have access to any other network resources.
What single WLAN security feature should be implemented to comply with these requirements?
A. Captive portal
B. Group authentication
C. RADIUS policy accounting
D. Mutual authentication
E. Role-based access control
正解：E

質問 4：
What 802.11 WLAN security problem is directly addressed by mutual authentication?
A. Offline dictionary attacks
B. Disassociation attacks
C. MAC spoofing
D. Weak Initialization Vectors
E. Wireless hijacking attacks
F. Weak password policies
正解：E

質問 5：
For a WIPS system to identify the location of a rogue WLAN device using location patterning (RF fingerprinting), what must be done as part of the WIPS installation?
A. At least six antennas must be installed in each sensor.
B. A location chipset (GPS) must be installed with it.
C. The RF environment must be sampled during an RF calibration process.
D. All WIPS sensors must be installed as dual-purpose (AP/sensor) devices.
正解：C

質問 6：
Given: You view a protocol analyzer capture decode with the following protocol frames listed in the following order (excluding the ACK frames):
1) 802.11 Probe Request and 802.11 Probe Response 2) 802.11 Auth and another 802.11 Auth 2) 802.11 Assoc Req and 802.11 Assoc Rsp 4) EAPOL-Start 5) EAP Request and EAP Response 6) EAP Request and EAP Response 7) EAP Request and EAP Response 8) EAP Request and EAP Response 9) EAP Request and EAP Response 10) EAP Success 19) EAPOL-Key (4 frames in a row)
What are you seeing in the capture file? (Choose 4)
A. WPA2-Personal authentication
B. Active Scanning
C. WPA2-Enterprise authentication
D. 802.1X with Dynamic WEP
E. Wi-Fi Protected Setup with PIN
F. 4-Way Handshake
G. 802.11 Open System authentication
正解：B,C,F,G

質問 7：
Given: In a security penetration exercise, a WLAN consultant obtains the WEP key of XYZ Corporation's wireless network. Demonstrating the vulnerabilities of using WEP, the consultant uses a laptop running a software AP in an attempt to hijack the authorized user's connections. XYZ's legacy network is using 802.11n APs with 802.11b, 11g, and 11n client devices.
With this setup, how can the consultant cause all of the authorized clients to establish Layer 2 connectivity with the software access point?
A. A higher SSID priority value configured in the Beacon frames of the consultant's software AP will take priority over the SSID in the authorized AP, causing the clients to reassociate.
B. When the RF signal between the clients and the authorized AP is temporarily disrupted and the consultant's software AP is using the same SSID on a different channel than the authorized AP, the clients will reassociate to the software AP.
C. If the consultant's software AP broadcasts Beacon frames that advertise 802.11g data rates that are faster rates than XYZ's current 802.11b data rates, all WLAN clients will reassociate to the faster AP.
D. All WLAN clients will reassociate to the consultant's software AP if the consultant's software AP provides the same SSID on any channel with a 10 dB SNR improvement over the authorized AP.
正解：B

質問 8：
What wireless authentication technologies may build a TLS tunnel between the supplicant and the authentication server before passing client authentication credentials to the authentication server? (Choose 3)
A. LEAP
B. EAP-TTLS
C. EAP-MD5
D. PEAPv0/MSCHAPv2
E. EAP-TLS
正解：B,D,E

質問 9：
Given: John Smith uses a coffee shop's Internet hot-spot (no authentication or encryption) to transfer funds between his checking and savings accounts at his bank's website. The bank's website uses the HTTPS protocol to protect sensitive account information. While John was using the hot-spot, a hacker was able to obtain John's bank account user ID and password and exploit this information.
What likely scenario could have allowed the hacker to obtain John's bank account user ID and password?
A. Before connecting to the bank's website, John's association to the AP was hijacked. The attacker intercepted the HTTPS public encryption key from the bank's web server and has decrypted John's login credentials in near real-time.
B. John's bank is using an expired X.509 certificate on their web server. The certificate is on John's Certificate Revocation List (CRL), causing the user ID and password to be sent unencrypted.
C. John uses the same username and password for banking that he does for email. John used a POP3 email client at the wireless hot-spot to check his email, and the user ID and password were not encrypted.
D. The bank's web server is using an X.509 certificate that is not signed by a root CA, causing the user ID and password to be sent unencrypted.
E. John accessed his corporate network with his IPSec VPN software at the wireless hot-spot. An IPSec VPN only encrypts data, so the user ID and password were sent in clear text. John uses the same username and password for banking that he does for his IPSec VPN software.
正解：C