Saturday, 2 March 2019

Appendix G

Associate Program Material Appendix GWireless local atomic number 18a network Vulnerabilities MatrixComplete the following matrix by filling in the blank boxes in the table.Security protection Brief description Vulnerabilities Prevention (if any) mackintosh address filtering hardly allows access to a device if its MAC address matches that of a pre-approved enumerate on the router. MAC Spoofing Dont rely on MAC filtering alone. Open system authentication (SSID beaconing) Disables SSID from being broadcast so radio set networks are harder to detect. A spectrum analyzer mess still be employ to find the network name. Create a more complex SSID and war cry settings in your APWEPStands for Wired Equivalency Privacy. Uses 64 bit or 128 bit encryption. (including 24-bit IV) In larger networks, IVs can be duplicated and cause collisions, which are easy to detect by outside influences Use WPA2 with AES or standardized instead on larger, enterprise deployments.Of the six categories of at tackers, the one I would slightly want to break into my network would be hackers, as they attempt to track your network and expose vulnerabilities, then inform you of them. This is opposed to a cracker, which leave alone do the same thing, only steal the data and attempt to shift it. A script kiddie is very dangerous, as they are generally under-experienced hackers and roughened who use someone elses codes and almost always have venomous intent.Between MAC filtering, WEP, and authentication, I believe that WEP is the most secure of the three. MAC filtering can be easily overcome by MAC spoofing, and is not while of the 802.11 standard. Authentication is somewhat asthenicer than WEP, as someone could capture the cleartext challenge vocalise and the encrypted response frame and gain access to the network. WEP is the strongest of the 3, but is still weak due to IV collisions which can be monitored and the hacker can heal the security key during those collisions.In fact, hack ers can even cause massive IV collisions to speed up the process. It should be noted this is really only an import on larger wireless networks as there are approximately 16 million IVs that can be give out. But in an enterprise application, 16 million can authorize in a matter of hours or days.

No comments:

Post a Comment