Certified Wireless Security Professional (CWSP)

Question 1

Which of the following protocols periodically verifies the identity of the client by using a three-way handshake?

A. PAP

B. CHAP

C. PPP

D. EAP-TLS

Correct Answer: B

Explanation: Only visible for Actualtests4sure members. You can sign-up / login (it's free).

Question 2

Which of the following provides the best protection against a man-in-the-middle attack?

A. Firewall

B. Strong encryption

C. Fiber-optic cable

D. Strong password

Correct Answer: B

Explanation: Only visible for Actualtests4sure members. You can sign-up / login (it's free).

Question 3

What statement accurately describes the functions of the IEEE 802.1X standard?

A. Port-based access control with 802.3 and 802.11 LANs

B. Port-based access control with support for authenticated-user VLANs only

C. Port-based access control with support for EAP authentication and AES-CCMP encryption only

D. Port-based access control with encryption key management and distribution

E. Port-based access control with permission for three frame types: EAP, DHCP, DNS.

Correct Answer: C

Explanation: Only visible for Actualtests4sure members. You can sign-up / login (it's free).

Question 4

Given: ABC corporation is selecting a security solution for there new WLAN. Two of there considered solutions PPTP VPN and 802.1XEAP. They have considered a PPTP VPN and because it is included with both server and desktop operating system. With both solutions are considered strong enough to adhere to corporate security police, the company is worried about security weakness of MS-CHAPv2 authentication.
As a consultant what do you tell ABC Corporation about implementing MS-CHAPv2 authentication? (Choose 2)

A. MS-CHAPv2 is secure when implemented with AES-CCMP encryption.

B. MS-CHAPv2 uses anonymous differ-Helliman authentication, and therefore secure.

C. MS-CHAPv2 is subject to offline dictionary attacks.

D. MS-CHAPv2 is only appropriate for WLAN security when used inside a TLS-encrypted tunnel.

E. MS-CHAPv2 is only secure when combined with WEP.

F. MS-CHAPv2 is complaint with WPA-personal, not WPA-2-Enterprise.

Correct Answer: C,D

Explanation: Only visible for Actualtests4sure members. You can sign-up / login (it's free).

Question 5

Which of the following is the most secure protocol used for encryption in a wireless network?

A. WPA2

B. IPSec

C. WPA

D. WEP

E. Explanation:
Among the given choices, WPA2 is the most secure wireless protocol used in a wireless network. This protocol was created in response to several serious weaknesses researchers had found in the previous system, Wired Equivalent Privacy (WEP). WPA2 is an updated version of WPA.This standard is also known as IEEE 802.11i. WPA2 offers enhanced protection to wireless networks than WPA andWEP standards. It is also available as WPA2-PSK and WPA2-EAP for home and enterprise environment respectively.

Correct Answer: A

Explanation: Only visible for Actualtests4sure members. You can sign-up / login (it's free).

Question 6

Which of the following stream ciphers is both a block cipher and a product cipher?

A. AES

B. RC2

C. RC4

D. DES

Correct Answer: D

Explanation: Only visible for Actualtests4sure members. You can sign-up / login (it's free).

Question 7

A Cisco Unified Wireless Network has an access point (AP) that provides a single point of management and reduces the security concern of a stolen access point. Which type of access point has this characteristic?

A. LWAPP

B. Rouge AP

C. Lightweight AP

D. Autonomous AP

Correct Answer: C

Explanation: Only visible for Actualtests4sure members. You can sign-up / login (it's free).

Question 8

Which of the following is a passive device that cannot be detected by a wireless intrusion detection system (WIDS)?

A. MAC spoofing

B. Rogue access point

C. Protocol analyzer

D. Spectrum analyzer

Correct Answer: C

Explanation: Only visible for Actualtests4sure members. You can sign-up / login (it's free).

Question 9

Which of the following is an intermediate network similar to RSN that supports legacy security such as WEP within the same BSS?

A. WPA2

B. WPA

C. TSN

D. VPN

Correct Answer: C

Explanation: Only visible for Actualtests4sure members. You can sign-up / login (it's free).

Question 10

The 802.11i 4-way handshake process is used with which secure WLAN implementations? (Choose two)

A. When IPSec is used on an Enterprise Wireless Gateway

B. When WPA-Personal is used on a SOHO WLAN router

C. When HTTPS is used for a WLANhot-spotlogin

D. When static WEP-128 is used on a WLAN switch

E. When WPA2-Enterprise is used on an enterprise class thick AP

Correct Answer: B,E

Explanation: Only visible for Actualtests4sure members. You can sign-up / login (it's free).

Question 11

Which of the following will you recommend for providing security?

A. S/MIME

B. SSL

C. HTTP

D. VPN

Correct Answer: B

Explanation: Only visible for Actualtests4sure members. You can sign-up / login (it's free).

Question 12

An intruder locates an unprotected 802.11b WLAN and gains control of two access points and a wireless bridge using the default SNMP read/write community strings. What types of wireless auditing tools are required for the intruder to locate the WLAN, discover the infrastructure devices, and exploit this particular security hole?

A. Netstumbler, share enumerator, wireless protocol analyzer, and spectrum analyzer

B. Network management software, WEP decryption software, application layer analyzer, and an SSH2 clientutility

C. Wireless protocol analyzer, IP scanning utility, and network management software

D. IP scanning utility, network management software, access point software, and an RFjamming device

E. MacStumbler, OS fingerprinting & port scanning tool, and WEP decryption software

Correct Answer: C

Explanation: Only visible for Actualtests4sure members. You can sign-up / login (it's free).

Question 13

Given: WLAN protocol analyzers can read and reject many wireless frame parameters.
What parameter is needed to physically locate rogue APs with a protocol analyzer?

A. Noise Flow

B. RSSI

C. RSNE

D. signal strength

E. IP address

Correct Answer: D

Explanation: Only visible for Actualtests4sure members. You can sign-up / login (it's free).

Question 14

When securing a wireless Ad Hoc network, which options are practical security mechanisms? (Choose three)

A. PPTP/MPPE VPN

B. SSH2 VPN

C. WEP

D. WPA-Enterprise

E. IPSec/ESP

F. WPA2-Personal

Correct Answer: C,E,F

Explanation: Only visible for Actualtests4sure members. You can sign-up / login (it's free).

CWNP Certified Wireless Security Professional (CWSP) - PW0-204 Exam Practice Test

Latest Update

Useful Links

Contact Us