CompTIA Security Plus Mock Test Q202

A retail store uses a wireless network for its employees to access inventory from anywhere in the store. Due to concerns regarding the aging wireless network, the store manager has brought in a consultant to harden the network. During the site survey, the consultant discovers that the network was using WEP encryption. Which of the following would be the BEST course of action for the consultant to recommend?

A. Replace the unidirectional antenna at the front of the store with an omni-directional antenna.
B. Change the encryption used so that the encryption protocol is CCMP-based.
C. Disable the network’s SSID and configure the router to only access store devices based on MAC addresses.
D. Increase the access point’s encryption from WEP to WPA TKIP.


Correct Answer: B
Section: Network Security

Explanation:
CCMP is the standard encryption protocol for use with the WPA2 standard and is much more secure than the WEP protocol and TKIP protocol of WPA. CCMP provides the following security services:
Data confidentiality; ensures only authorized parties can access the information Authentication; provides proof of genuineness of the user Access control in conjunction with layer management

Incorrect Options:
A: The antenna type deals with signal strength and direction. It will not have a bearing on whether technology is older.
C: This option would “cloak” the network, not harden the network.
D: WPA2, which uses CCMP as its standard encryption protocol, more secure than WPA-TKIP.

Reference:
http://en.wikipedia.org/wiki/CCMP
http://en.wikipedia.org/wiki/Wi-Fi_Protected_Access
Stewart, James Michael, CompTIA Security+ Review Guide, Sybex, Indianapolis, 2014, pp. 61, 63