CompTIA Security Plus Mock Test Q624

Which of the following implementation steps would be appropriate for a public wireless hot-spot?

A. Reduce power level
B. Disable SSID broadcast
C. Open system authentication
D. MAC filter

Correct Answer: C
Section: Threats and Vulnerabilities

Explanation:
For a public wireless hot-spot, you want members of the public to be able to access the wireless network without having to provide them with a password. Therefore, Open System Authentication is the best solution.
Open System Authentication (OSA) is a process by which a computer can gain access to a wireless network that uses the Wired Equivalent Privacy (WEP) protocol. With OSA, a computer equipped with a wireless modem can access any WEP network and receive files that are not encrypted.
For OSA to work, the service set identifier (SSID) of the computer should match the SSID of the wireless access point. The SSID is a sequence of characters that uniquely names a wireless local area network (WLAN). The process occurs in three steps. First, the computer sends a request for authentication to the access point. Then the access point generates an authentication code, usually at random, intended for use only during that session. Finally, the computer accepts the authentication code and becomes part of the network as long as the session continues and the computer remains within range of the original access point.
If it is necessary to exchange encrypted data between a WEP network access point and a wireless-equipped computer, a stronger authentication process called Shared Key Authentication (SKA) is required.

Incorrect Answers:
A: Reducing the power level of a wireless access point does not provide a mechanism for members of the public to connect to the wireless network. Reducing the power level of a wireless access point would just make the range of the wireless network smaller.
B: Disabling SSID broadcasting for the wireless network would make the network invisible to users’ computers. The user would need to know the name (SSID) of the network and enter it manually in order to connect to the network. This is not an appropriate solution for a public Wi-Fi hotspot.
D: MAC filtering is the process of restricting network access to a list of known MAC addresses. As you will not know the MAC address of any user’s computers, then this is not an appropriate solution for a public Wi-Fi hotspot.

References:
http://searchsecurity.techtarget.com/definition/Open-System-Authentication-OSA