
[2023年11月03日] CWSP-206テストエンジンお試しセット、CWSP-206問題集PDF
最新のCWNP CWSP-206のPDFと問題集で(2023)無料試験問題解答
CWSP-206試験は、特定の無線ネットワークベンダーに限定されないベンダーニュートラルな認定資格であるため、この認定資格から得られる知識やスキルは、ベンダーに関係なく、どの無線ネットワーク環境にも適用することができます。この認定資格は、世界的に認知されており、認定資格を保持する個人は世界中のどの国でも働くことができます。
質問 # 22
Which of the following protocols is designed to provide more secure encryption than the weak wired encryption privacy?
- A. TKIP
- B. LEAP
- C. PEAP
- D. CCMP
正解:A
質問 # 23
Which of the following protocols is used for authentication in an 802.1X framework?
- A. IPSec
- B. EAP
- C. TKIP
- D. L2TP
正解:B
質問 # 24
Which of the following actions will you perform to accomplish the task? Each correct answer represents a complete solution. Choose all that apply.
- A. Implement the IEEE 802.1X authentication for the wireless network.
- B. Using group policies, configure the network to allow the wireless computers to connect to the ad hoc networks only.
- C. Using group policies, configure the network to allow the wireless computers to connect to the infrastructure networks only.
- D. Configure the wireless network to use WEP encryption for the data transmitted over a wireless network.
- E. Implement the open system authentication for the wireless network.
正解:A、C、D
質問 # 25
Which of the following keys is derived by Pairwise Master Key (PMK)?
- A. Private Key
- B. Public Key
- C. Pairwise Transient Key
- D. Group Temporal Key
正解:C
質問 # 26
You work as a Network Administrator for NetTech Inc.
The company has a Windows 2003 domain-based network.
The company has a main office and several branch offices.
You want to centralize the administration.
Therefore, you implement a Remote Authentication Dial-In Service (RADIUS) server. Each branch office supports its own Routing and Remote Access Server. You remove the default remote access policy, as you want to secure communications and implement a single policy that requires all dial-up communications to use a 40-bit encryption.
What will you do to accomplish this?
Each correct answer represents a part of the solution. Choose two.
- A. Create a remote access policy on the RADIUS server.
- B. Create a remote access policy on the Routing and Remote Access Server of each branch office.
- C. Set the level of encryption to Basic in the remote access policy.
- D. Set the level of encryption to No Encryption in the remote access policy.
正解:A、C
質問 # 27
What software and hardware tools are used in the processperformed to hijack a wireless station from the authorized wireless network onto an unauthorized wireless network?
- A. RF jamming device and a wireless radio card
- B. A wireless workgroup bridge and a protocol analyzer
- C. MAC spoofing software and MAC DoS software
- D. A low-gain patch antenna and terminal emulation software
正解:A
質問 # 28
You work as a network administrator for Web Perfect Inc. You configure both WPA and EAP authentications on a client computer in the company's wireless network.
Where will the encryption key be located during the active user session? Each correct answer represents a part of the solution. Choose two.
- A. On the client
- B. On the AP
- C. On the controller
- D. Shared with all clients in the network
正解:A、B
質問 # 29
The Aircrack-ng WLAN software tool can capture and transmit modified 802.11 frames over the wirelessnetwork. It comes pre-installed on Kali Linux and some other Linux distributions. Which one of the following would not be a suitable penetration testing action taken with this tool?
- A. Auditing the configuration and functionality of a WIPS by simulating common attack sequences.
- B. Probing the RADIUS server and authenticator to expose the RADIUSshared secret.
- C. Transmitting a deauthentication frame to disconnect a user from the AP.
- D. Cracking the authentication or encryption processes implemented poorly in some WLANs.
正解:B
質問 # 30
Fred works primarily from home and public wireless hotspots rather than commuting to office. He frequently accesses the office network remotely from his Mac laptop using the local 802.11 WLAN. In this remote scenario, what single wirelesssecurity practice will provide the greatest security for Fred?
- A. Use secure protocols, such as FTP, for remote file transfers.
- B. Use 802.1X/PEAPv0 to connect to the corporate office network from public hotspots.
- C. Use enterprise WIPS on the corporate office network.
- D. Use an IPSec VPN for connectivity to the office network.
- E. Use WIPS sensor software on the laptop to monitor for risks and attacks.
- F. Use only HTTPS when agreeing to acceptable use terms on public networks.
正解:D
質問 # 31
Your network implements an 802.1X/EAP-based wireless security solution. A WLAN controller is installed and manages seven APs. FreeRADIUS is used for the RADIUS server and is installed on a dedicated server named SRV21. One example client is a MacBook Pro with 8 GB RAM.
What device functions as the 802.1X/ EAP Authenticator?
- A. RADIUS server
- B. MacBook Pro
- C. SRV21
- D. WLAN Controller/AP
正解:D
質問 # 32
You support a coffee shop and have recently installed a free 802.11ac wireless hotspot for the benefit of your customers. You want to minimize legal risk in the event that the hotspot is used for illegal Internet activity. What option specifies the best approach to minimize legal risk at this public hotspot while maintaining an open venue for customer Internet access?
- A. Implement a captive portal with an acceptable use disclaimer.
- B. Allow only trusted patrons to use the WLAN.
- C. Block TCP port 25 and 80 outbound on the Internet router.
- D. Use a WIPS to monitor all traffic and deauthenticate malicious stations.
- E. Require client STAs to have updated firewall and antivirus software.
- F. Configure WPA2-Enterprise security on the access point.
正解:A
質問 # 33
Which of the following encryption methods use the RC4 technology? Each correct answer represents a complete solution. Choose all that apply.
- A. TKIP
- B. Dynamic WEP
- C. Static WEP
- D. CCMP
正解:A、B、C
質問 # 34
When using a tunneled EAP type, such as PEAP, what component is protected inside the TLS tunnel so that it is not sent in clear text across the wireless medium?
- A. X.509 certificates
- B. RADIUS shared secret
- C. Server credentials
- D. User credentials
正解:D
質問 # 35
Which of the following is an application protocol that is used to query and modify data using directory services running over TCP/IP?
- A. LEAP
- B. LDAP
- C. HTTP
- D. RBAC
正解:B
質問 # 36
The following numbered items show some of the contents of each of the four frames exchanged during the
4-way handshake.
* Encrypted GTK sent
* Confirmation of temporal key installation
* ANonce sent from authenticator to supplicant
* SNonce sent from supplicant to authenticator, MIC included
Arrange the frames in the correct sequence beginning with the start of the 4-way handshake.
- A. 4, 3, 1, 2
- B. 1, 2, 3, 4
- C. 3, 4, 1, 2
- D. 2, 3, 4, 1
正解:C
質問 # 37
In a security penetration exercise, a WLAN consultant obtains the WEP key of XYZ Corporation's wireless network. Demonstrating the vulnerabilities of using WEP, the consultant uses a laptop running a software AP in an attempt to hijack the authorized user's connections. XYZ's legacy network is using 802.11n APs with 802.11b, 11g, and 11n client devices. With this setup, how can the consultant cause all of the authorized clients to establish Layer 2 connectivity with the software access point?
- A. When the RF signal between the clients and the authorized AP is temporarily disrupted and the consultant's software AP is using the same SSID on a different channel than the authorized AP, the clients will reassociate to the software AP.
- B. A higher SSID priority value configured in the Beacon frames of the consultant's software AP will take priority over the SSID in the authorized AP, causing the clients to reassociate.
- C. All WLAN clients will reassociate to the consultant's software AP if the consultant's software AP provides the same SSID on any channel with a 10 dB SNR improvement over the authorized AP.
- D. If the consultant's software AP broadcasts Beacon frames that advertise 802.11g data rates that are faster rates than XYZ's current 802.11b data rates, all WLAN clients will reassociate to the faster AP.
正解:A
質問 # 38
Which of the following security protocols uses a single, manually configured, static key for data encryption that is shared by the client and the WAP?
- A. IPSec
- B. WPA
- C. WEP
- D. L2TP
正解:C
質問 # 39
Which of the following components are typically required for securing a wireless 802.11 network?
Each correct answer represents a complete solution. Choose all that apply.
- A. Monitoring
- B. AAA
- C. Data confidentiality
- D. Network segmentation
正解:A、B、C、D
質問 # 40
Which of the following keys are used by the public key infrastructure (PKI)? Each correct answer represents a complete solution. Choose all that apply.
- A. Private Key
- B. Pairwise Transient Key
- C. Public Key
- D. Group Temporal Key
正解:A、C
質問 # 41
Which one of the following is not a role defined in the 802.1X authentication procedures used in
802.11 and 802.3 networks for port-based authentication?
- A. Supplicant
- B. Authentication Server
- C. AAA Server
- D. Authenticator
正解:C
質問 # 42
ABC Company is deploying an IEEE 802.11-compliant wireless security solution using
802.1X/EAP authentication. According to company policy, the security solution must prevent an eavesdropper from decrypting data frames traversing a wireless connection. What security characteristic and/or component plays a role in preventing data decryption?
- A. Integrity Check Value (ICV)
- B. 4-Way Handshake
- C. Encrypted Passphrase Protocol (EPP)
- D. PLCP Cyclic Redundancy Check (CRC)
- E. Multi-factor authentication
正解:B
質問 # 43
Which of the following are secure infrastructure management protocols used in WLAN? Each correct answer represents a complete solution. Choose all that apply.
- A. HTTPS
- B. SCP
- C. SNMPv3
- D. Telnet
正解:A、B、C
質問 # 44
......
あなたを合格させるCWSP Certification CWSP-206試験問題集で2023年11月03日には138問あります:https://jp.fast2test.com/CWSP-206-premium-file.html
CWSP-206無料試験学習ガイド!(更新された138問あります):https://drive.google.com/open?id=1ECW9QG4N4jOC122kFaUfpM0soGvntWFB