The original 802.11 core security protocol, ________, was deeply flawed.

Prepare for the Network Security Examination by mastering key concepts in cybersecurity. Utilize interactive questions and detailed explanations to enhance your knowledge. Excel in your exam with our comprehensive preparation resources!

Multiple Choice

The original 802.11 core security protocol, ________, was deeply flawed.

Explanation:
WEP is the one that failed badly because it relies on RC4 with a short initialization vector and a weak integrity check. The 24-bit IV is small, so in real networks IVs repeat quickly. When the same IV and key are reused, the same keystream is used to encrypt different packets, making it possible to compare ciphertexts and recover information about the plaintext or even reveal the key with enough captured traffic. On top of that, the integrity protection is weak: it uses a CRC-32, which is not a cryptographic authentication tag, so attackers can modify data and craft new frames that look valid, or tamper with messages without detection. These flaws together mean confidentiality and integrity aren’t properly protected. WPA and 802.11i were designed to address these issues. WPA introduced stronger per-packet key handling and integrity checks (and, in later implementations, TKIP), while 802.11i (often called WPA2) uses AES-based CCMP for robust confidentiality and authentication. None of the other options describe the original protocol that had these critical weaknesses.

WEP is the one that failed badly because it relies on RC4 with a short initialization vector and a weak integrity check. The 24-bit IV is small, so in real networks IVs repeat quickly. When the same IV and key are reused, the same keystream is used to encrypt different packets, making it possible to compare ciphertexts and recover information about the plaintext or even reveal the key with enough captured traffic. On top of that, the integrity protection is weak: it uses a CRC-32, which is not a cryptographic authentication tag, so attackers can modify data and craft new frames that look valid, or tamper with messages without detection. These flaws together mean confidentiality and integrity aren’t properly protected.

WPA and 802.11i were designed to address these issues. WPA introduced stronger per-packet key handling and integrity checks (and, in later implementations, TKIP), while 802.11i (often called WPA2) uses AES-based CCMP for robust confidentiality and authentication. None of the other options describe the original protocol that had these critical weaknesses.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy