Online Access Free CWSP-208 Practice Test

You have an AP implemented that functions only using 802.11-2012 standard methods for the WLAN communications on the RF side and implementing multiple SSIDs and profiles on the management side configured as follows:
1. SSID: Guest - VLAN 90 - Security: Open with captive portal authentication - 2 current clients
2. SSID: ABCData - VLAN 10 - Security: PEAPv0/EAP-MSCHAPv2 with AES-CCMP - 5 current clients
3. SSID: ABCVoice - VLAN 60 - Security: WPA2-Personal - 2 current clients Two client STAs are connected to ABCData and can access a media server that requires authentication at the Application Layer and is used to stream multicast video streams to the clients.
What client stations possess the keys that are necessary to decrypt the multicast data packets carrying these videos?

• A.All clients that are associated to the AP using any SSID
• B.All clients that are associated to the AP with a shared GTK, which includes ABCData and ABCVoice.
• C.All clients that are associated to the AP using the ABCData SSID
• D.Only the members of the executive team that are part of the multicast group configured on the media server

What drawbacks initially prevented the widespread acceptance and use of Opportunistic Key Caching (OKC)?

• A.Key exchanges during fast roams required processor-intensive cryptography, which was prohibitive for legacy devices supporting only TKIP.
• B.The Wi-Fi Alliance continually delayed the creation of a client certification for OKC, even though it was defined by IEEE 802.11r.
• C.Because OKC is not defined by any standards or certification body, client support was delayed and sporadic early on.
• D.Sharing cached keys between controllers during inter-controller roaming created vulnerabilities that exposed the keys to attackers.

In order to acquire credentials of a valid user on a public hot-spot network, what attacks may be conducted?
Choose the single completely correct answer.

• A.Authentication cracking and/or RF DoS
• B.MAC denial of service and/or physical theft
• C.Code injection and/or XSS
• D.Social engineering and/or eavesdropping
• E.RF DoS and/or physical theft

Wireless Intrusion Prevention Systems (WIPS) provide what network security services? (Choose 2)

• A.Analysis and reporting of AP CPU utilization
• B.Configuration distribution for autonomous APs
• C.Application-layer traffic inspection
• D.Wireless vulnerability assessment
• E.Policy enforcement and compliance management

A WLAN is implemented using WPA-Personal and MAC filtering.
To what common wireless network attacks is this network potentially vulnerable? (Choose 3)

• A.MAC Spoofing
• B.ASLEAP
• C.DoS
• D.Offline dictionary attacks