Month End Sale 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: save70

Note! Following CWSP-206 Exam is Retired now. Please select the alternative replacement for your Exam Certification. The new exam code is CWSP-207

Verified By IT Certified Experts

CertsTopics.com Certified Safe Files

Up-To-Date Exam Study Material

99.5% High Success Pass Rate

100% Accurate Answers

Instant Downloads

Exam Questions And Answers PDF

Try Demo Before You Buy

Certification Exams with Helpful Questions And Answers

CWSP Certified Wireless Security Professional Questions and Answers

Question 1

The IEEE 802.11 Pairwise Transient Key (PTK) is derived from what cryptographic element?

Options:

A.

PeerKey (PK)

B.

Group Master Key (GMK)

C.

Key Confirmation Key (KCK)

D.

Pairwise Master Key (PMK)

E.

Phase Shift Key (PSK)

F.

Group Temporal Key (GTK)

Buy Now
Question 2

As the primary security engineer for a large corporate network, you have been asked to author a new securitypolicy for the wireless network. While most client devices support 802.1X authentication, some legacy devices still only support passphrase/PSK-based security methods. When writing the 802.11 security policy, what password-related items should be addressed?

Options:

A.

Certificates should always be recommended instead of passwords for 802.11 client authentication.

B.

Password complexity should be maximized so that weak WEP IV attacks are prevented.

C.

Static passwords should be changed on a regular basis to minimize the vulnerabilities of a PSK-based authentication.

D.

EAP-TLS must be implemented in such scenarios.

E.

MS-CHAPv2 passwords used with EAP/PEAPv0 should be stronger than typical WPA2-PSK passphrases.

Question 3

In order to acquire credentials of a valid user on a public hotspot network, what attacks may be conducted? Choose thesingle completely correct answer.

Options:

A.

MAC denial of service and/or physical theft

B.

Social engineering and/or eavesdropping

C.

Authentication cracking and/or RF DoS

D.

Code injection and/or XSS

E.

RF DoS and/or physical theft