Cyber Monday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Eccouncil Exam 312-50 Topic 9 Question 91 Discussion

Actual exam question for Eccouncil's 312-50 exam
Question #: 91
Topic #: 9
[All 312-50 Questions]

You are an ethical hacker contracted to conduct a security audit for a company. During the audit, you discover that the company's wireless network is using WEP encryption. You understand the vulnerabilities associated with WEP and plan to recommend a more secure encryption method. Which of the following would you recommend as a Suitable replacement to enhance the security of the company's wireless network?

Show Suggested Answer Hide Answer
Suggested Answer: B

WEP encryption is an outdated and insecure method of protecting wireless networks from unauthorized access and eavesdropping.WEP uses a static key that can be easily cracked by various tools and techniques, such as capturing the initialization vectors, brute-forcing the key, or exploiting the weak key scheduling algorithm1. Therefore, you should recommend a more secure encryption method to enhance the security of the company's wireless network.

One of the most suitable replacements for WEP encryption is WPA2-PSK with AES encryption. WPA2 stands for Wi-Fi Protected Access 2, which is a security standard that improves upon the previous WPA standard. WPA2 uses a robust encryption algorithm called AES, which stands for Advanced Encryption Standard.AES is a block cipher that uses a 128-bit key and is considered to be very secure and resistant to attacks2.

WPA2-PSK stands for WPA2 Pre-Shared Key, which is a mode of WPA2 that uses a passphrase or a password to generate the encryption key. The passphrase or password must be entered by the users who want to connect to the wireless network. The key is then derived from the passphrase or password using a function called PBKDF2, which stands for Password-Based Key Derivation Function 2.PBKDF2 adds a salt and a number of iterations to the passphrase or password to make it harder to crack3.

WPA2-PSK with AES encryption offers several advantages over WEP encryption, such as:

It uses a dynamic key that changes with each session, instead of a static key that remains the same.

It uses a stronger encryption algorithm that is more difficult to break, instead of a weaker encryption algorithm that is more vulnerable to attacks.

It uses a longer key that provides more security, instead of a shorter key that provides less security.

It uses a more secure key derivation function that adds complexity and randomness, instead of a simple key generation function that is predictable and flawed.

Therefore, you should recommend WPA2-PSK with AES encryption as a suitable replacement to enhance the security of the company's wireless network.


Wireless Security - Encryption - Online Tutorials Library

WiFi Security: WEP, WPA, WPA2, WPA3 And Their Differences - NetSpot

WPA2-PSK (Wi-Fi Protected Access 2 Pre-Shared Key)

Contribute your Thoughts:

Jacki
2 months ago
MAC address filtering can be easily bypassed, WPA2-PSK with AES encryption is the best choice.
upvoted 0 times
...
Jeffrey
2 months ago
Open system authentication? Yeah, right. Might as well just put a neon sign saying 'Hack me!' Gotta be B, folks.
upvoted 0 times
...
Gerry
2 months ago
Ooh, tricky one. I'd say B as well. Can't beat that AES encryption. Although, disabling SSID broadcast could be a nice added touch.
upvoted 0 times
Rolande
1 months ago
User 4: Disabling SSID broadcast could also add an extra layer of security.
upvoted 0 times
...
Earleen
1 months ago
I agree, WPA2-PSK with AES encryption is the way to go.
upvoted 0 times
...
Jesusa
1 months ago
Yeah, AES encryption is definitely more secure than WEP.
upvoted 0 times
...
Hannah
1 months ago
I think we should go with B) WPA2-PSK with AES encryption.
upvoted 0 times
...
...
Shannon
2 months ago
Haha, MAC address filtering? What is this, the 90s? B is the clear winner here. WPA2-PSK is the way to go for sure.
upvoted 0 times
...
Jackie
3 months ago
I'm not sure, what about MAC address filtering as an option?
upvoted 0 times
...
Farrah
3 months ago
I'm torn between B and D. Disabling SSID broadcast could add an extra layer of security, but WPA2-PSK is the gold standard. Hmm, maybe I'll go with B.
upvoted 0 times
Isadora
1 months ago
Agreed, WPA2-PSK with AES encryption is the best choice for enhancing security.
upvoted 0 times
...
Lorrine
2 months ago
Yeah, WPA2-PSK is definitely more secure than WEP.
upvoted 0 times
...
Agustin
2 months ago
I think WPA2-PSK with AES encryption is the way to go.
upvoted 0 times
...
...
Bettina
3 months ago
I agree with Jacki, WPA2-PSK with AES encryption is much more secure than WEP.
upvoted 0 times
...
Jacki
3 months ago
I think we should recommend WPA2-PSK with AES encryption.
upvoted 0 times
...
Ona
3 months ago
Definitely B. WPA2-PSK with AES encryption is the way to go. It's the industry standard for secure wireless networks these days.
upvoted 0 times
Lajuana
2 months ago
Agreed, it's the most secure option for our wireless network.
upvoted 0 times
...
Penney
3 months ago
I think we should go with B) WPA2-PSK with AES encryption.
upvoted 0 times
...
...

Save Cancel