Question 1

What preventative measures are performed by a WIPS against intrusions?

Options :

A : EAPoL Reject frame flood against a rogue AP

B : Evil twin attack against a rogue AP

C : Deauthentication attack against a classified neighbor AP

D : ASLEAP attack against a rogue AP

E : Uses SNMP to disable the switch port to which rogue APs connect

Answer: E

Question 2

What EAP type supports using MS-CHAPv2, EAP-GTC or EAP-TLS for wireless client authentication?

Options :

A : H-REAP

B : EAP-GTC

C : EAP-TTLS

D : PEAP

E : LEAP

Answer: D

Question 3

What attack cannot be detected by a Wireless Intrusion Prevention System (WIPS)?

Options :

A : MAC Spoofing

B : Eavesdropping

C : Hot-spotter

D : Soft AP

E : Deauthentication flood

F : EAP flood

Answer: B

Question 4

As a part of a large organization’s security policy, how should a wireless security professional address the problem of rogue access points?

Options :

A : Use a WPA2-Enterprise compliant security solution with strong mutual authentication and encryption for network access of corporate devices.

B : Hide the SSID of all legitimate APs on the network so that intruders cannot copy this parameter on rogue APs.

C : Conduct thorough manual facility scans with spectrum analyzers to detect rogue AP RF signatures.

D : A trained employee should install and configure a WIPS for rogue detection and response measures.

E : Enable port security on Ethernet switch ports with a maximum of only 3 MAC addresses on each port.

Answer: D

Question 5

Given: You are the WLAN administrator in your organization and you are required to monitor the network and ensure all active WLANs are providing RSNs. You have a laptop protocol analyzer configured. In what frame could you see the existence or non-existence of proper RSN configuration parameters for each BSS through the RSN IE?

Options :

A : Probe request

B : Beacon

C : RTS

D : CTS

E : Data frames

Answer: B

Higher Test Marks with Free Online CWSP-208 Exam Practice

Buying Options: