CompTIA Security+ Question I-48

A security architect wishes to implement a wireless network with connectivity to the company’s internal network. Before they inform all employees that this network is being put in place, the architect wants to roll it out to a small test segment. Which of the following allows for greater secrecy about this network during this initial phase of implementation?

A. Disabling SSID broadcasting
B. Implementing WPA2 – TKIP
C. Implementing WPA2 – CCMP
D. Filtering test workstations by MAC address

Answer: A

Explanation:
Network administrators may choose to disable SSID broadcast to hide their network from unauthorized personnel. However, the SSID is still needed to direct packets to and from the base station, so it’s a discoverable value using a wireless packet sniffer. Thus, the SSID should be disabled if the network isn’t for public use.

CompTIA Security+ Question I-8

Which of the following provides the HIGHEST level of confidentiality on a wireless network?

A. Disabling SSID broadcast
B. MAC filtering
C. WPA2
D. Packet switching

Answer: C

Explanation:
The Wi-Fi Protected Access (WPA) and Wi-Fi Protected Access 2 (WPA2) authentication protocols were designed to address the core, easy-to-crack problems of WEP.

CompTIA Security+ Question E-54

While previously recommended as a security measure, disabling SSID broadcast is not effective against most attackers because network SSIDs are:

A. no longer used to authenticate to most wireless networks.
B. contained in certain wireless packets in plaintext.
C. contained in all wireless broadcast packets by default.
D. no longer supported in 802.11 protocols.

Answer: B

Explanation:
The SSID is still required for directing packets to and from the base station, so it can be discovered using a wireless packet sniffer.

CompTIA A+ Core 2 Question H-92

Which of the following provides Bob, a technician, with the GREATEST security?

A. Disabling SSID
B. WEP
C. Static IP
D. WPA

Correct Answer: D

CompTIA A+ Core 2 Question F-11

Jane, a small business owner, would like to implement wireless networking for her business but wants to be sure the wireless is ONLY accessible from within her business premises. Which of the following would BEST accomplish this?

A. Disabling SSID broadcast to ensure that only employees know the SSID
B. Using unidirectional antennas and reducing radio power levels appropriately
C. Assigning DHCP addresses that expire after a shorter period of time
D. Using omni-directional antennas and reducing radio power levels appropriately

Correct Answer: B