Deck 24: Wireless Network Security

The transmission medium carries the radio waves for data transfer.

The purpose of the authentication phase is to maintain backward
compatibility with the IEEE 802.11 state machine.

The primary purpose of the MAC layer is to transfer MSDUs
between MAC entities.

WPA2 incorporates all of the features of the IEEE 802.11i WLAN
security specifications.

CRC is an error detecting code.

In most data-link control protocols,the data-link protocol entity is
responsible not only for detecting errors using the CRC,but for
recovering from those errors by retransmitting damaged frames.

The concerns for wireless security,in terms of threats,and
countermeasures,are different to those found in a wired environment,such as an Ethernet LAN or a wired wide-area network.

Any device that contains an IEEE 802.11 conformant MAC and
physical layer is a basic service set.

The association service enables transfer of data between a station
on an IEEE 802.11 LAN and a station on an integrated IEEE 802.x LAN.

The wireless access point provides a connection to the network or
service.

The most significant source of risk in wireless networks in the
underlying communications medium.

An extended service set (ESS)is a set of stations controlled by a
single coordination function.

The MAC service data unit contains any protocol control
information needed for the functioning of the MAC protocol.

The purpose of the discovery phase is for an STA and an AP to
recognize each other,agree on a set of security capabilities,and establish an association for future communication using those security capabilities.

The principal threats to wireless transmission are disruption,_____________,and altering or inserting messages.

The lowest layer of the IEEE 802 reference model is the __________ layer.

Like TKIP,CCMP provides two services: message integrity and ________.

A __________ attack occurs when an attacker continually bombards a wireless access point or some other accessible wireless port with various protocol messages designed to consume system resources.

The fields preceding the MSDU field are referred to as the _________.

A ____________ attack involves persuading a user and an access point to believe that they are talking to each other when in fact the communication is going through an intermediate attacking device.

A __________ attack targets wireless access points that are exposed to non-filtered network traffic,such as routing protocol messages or network management messages.

The wireless environment consists of three components that provide point of attack: the wireless client,the transmission medium,and the _________.

The security requirements are: confidentiality,integrity,availability,authenticity,and __________.

Two types of countermeasures are appropriate to deal with eavesdropping: signal-hiding techniques and ____________.

A ________ is a secret key shared by the AP and a STA and installed in some fashion outside the scope of IEEE 802.11i. A,pre-shared key
B)master session key
C)pairwise master key
D)group master key

There are two types of keys: ________ used for communication between a STA and an AP and group keys used for multicast communication.

The field following the MSDU field is referred to as the ___________.

The two services involved with the distribution of messages within a DS are distribution and _________.

The 802.11i RSN security specification defines the following services: authentication,privacy with message integrity,and ________.

At the top level of the group key hierarchy is the ___________.