International Engineering Consortium
Web ProForums
Home / On-Line Education / Web ProForums
EAP Methods for 802.11 Wireless LAN Security

Table of Contents:
Definition and Overview
1. Introduction
2. Requirements for Wireless Authentication
3. Certificate based Authentication methods
4. Password Authentication Methods
5. Conclusion
6. Appendix A
Self-Test
Glossary
Download PDFPDF of this tutorial
Self-Test
1. Today’s wireless network’s present new security problems not seen on legacy dial-up networks because _______________.
a. Without a physical connection the user has no way of knowing whether he is connecting to the intended network or a rogue access point.
b. The radio network can be monitored by anyone with a radio receiver
c. Wireless connections are not stable
d. a and b only
e. All of the above
2. Wireless networks can only be secured using public key certificates.
a. True
b. False
3. A wireless authentication protocol must include mutual authentication where the authenticator is authenticated to the user in order to guard against rogue access points.
a. True
b. False
4. Limiting the number of online authentication attempts is sufficient to thwart dictionary attacks.
a. True
b. False
5. Session keys provide ____________.
a. Message authentication
b. Message confidentiality
c. Message integrity
d. All of the above
6. It is preferable to authenticate the user rather than the user device.
a. True
b. False
7. EAP is the authentication protocol specified in IEEE 802.1x and supports a variety of authentication methods.
a. True
b. False
8. ______________ is an EAP method that uses public key certificates to authenticate both the client and server.
a. EAP-TLS
b. EAP-TTLS
c. PEAP
d. LEAP
9. _____________ is an EAP method that uses a TLS tunnel to protect legacy authentication protocols after using a public key certificates to authenticate the server.
a. EAP-TLS
b. EAP-TTLS
c. PEAP
d. LEAP
10. ____________ is an EAP method that uses a TLS tunnel to protect other EAP methods and thereby add features such as key exchange and fast reconnect.
a. EAP-TLS
b. EAP-TTLS
c. PEAP
d. LEAP
11. Some PEAP implementations are limited by ____________.
a. The ability of access points to support them.
b. Which backend databases can be used to store user credentials.
c. The uniqueness of the keys generated.
d. None of the above.
12. A disadvantage of certificate based authentication is ______________.
a. Cost of administration
b. Lengthy protocol exchanges
c. Authentication of the user device instead of the user
d. All of the above
13. ________________ is a proprietary EAP method only supported by a single vendor’s access points.
a. EAP-TTLS
b. PEAP
c. LEAP
d. None of the above
14. Strong password methods make it possible to achieve strong authentication using small easily remembered passwords.
a. True
b. False
15. SPEKE is a strong password authentication method whose advantage is _______________.
a. Ease of use since no certificates are required
b. Access point independent
c.Protection against off-line dictionary attacks
d. All of the above

Glossary >>

Copyright © 2007 International Engineering Consortium
Terms of Use | Privacy Statement | Site Map
Registered Users
Enjoy exclusive access to free On-Line Education and receive the biweekly IEC newsletter.
IEC Newsletter
Get the latest industry information including critical insights from key industry leaders, technology briefings, and an Analyst Corner.
Current
Subscribe
Newsroom
IEC News
June 04, 2008
Top Broadband Innovations in Asia-Pacific Recognized with IEC Announcement of 2008 InfoVision Finalists
April 30, 2008
IEC and Convergence World Magazine Announce Top NGN Innovators at SOFNET 08 in London
April 22, 2008
Excellence, Innovation and Leadership Recognized as IEC and Convergence World Announce 2008 Awards Finalists
IEC on Radio
IEC on radio Tele-Semana, commentary on NXTComm 2007 and future IEC programming.
IEC on TV
CCTV Highlights Broadband World Forum Asia 2007
BBWF Asia Comes to China

View all Press Releases
On-line Press Kit
IEC Corporate Member
Advertising Kit
Overview
IEC.org Web Banner Ads
Event Web Banner Ads
E-Newsletters
Exhibit Preview
TecPreview