CISSP PRACTICE QUESTIONS – 20220106

Effective CISSP Questions

Which of the following statements is correct about a Wi-Fi Protected Access 3 (WPA3) network? (Wentz QOTD)
A. Open networks of WPA3 in coffee shops are unauthenticated but encrypted.
B. WPA3-Personal profile is resistant to online dictionary attacks.
C. WPA3-Enterprise authentication is quantum-resistant.
D. Simultaneous Authentication of Equals (SAE) is implemented in open networks.

Kindly be reminded that the suggested answer is for your reference only. It doesn’t matter whether you have the right or wrong answer. What really matters is your reasoning process and justifications.

My suggested answer is A. Open networks of WPA3 in coffee shops are unauthenticated but encrypted.

Wentz’s book, The Effective CISSP: Security and Risk Management, helps CISSP and CISM aspirants build a solid conceptual security model. It is a tutorial for information security and a supplement to the official study guides for the CISSP and CISM exams and an informative reference for security professionals.

WPA3 improves security in open networks, pre-shared key authentication, and enterprise-grade encryption (192-bit AES). WPA3 employs opportunistic wireless encryption (OWE) to provide encryption in open networks that require no authentication and Simultaneous Authentication of Equals (SAE) to break the tie between the pre-shared key and the encryption keys used in wireless networks.

  • WPA3-Personal profile is resistant to offline dictionary attacks but not online ones.
  • WPA3-Enterprise authentication is not quantum-resistant because of the reliance on asymmetric cryptographic algorithms.
  • Opportunistic Wireless Encryption (OWE) is implemented in open networks.

Reference


關於 Wi-Fi Protected Access 3 (WPA3) 網絡,以下哪項陳述是正確的? (Wentz QOTD)
A. 咖啡店中的 WPA3 開放網絡未經身份驗證但有加密。
B. WPA3-個人配置可以抵抗在線字典攻擊。
C. WPA3-企業配置是抗量子的。
D. 相等同時驗證 (SAE) 被實作在開放網絡中。



Leave a Reply