Balancing Wireless Network Security and Compatibility
Question
A system administrator wants to provide balance between the security of a wireless network and usability.
The administrator is concerned with wireless encryption compatibility of older devices used by some employees.
Which of the following would provide strong security and backward compatibility when accessing the wireless network?
Answers
Explanations
Click on the arrows to vote for the correct answer
A. B. C. D.B.
Option A - Open wireless network and SSL VPN:
An open wireless network means that no encryption is used to secure the wireless communication. This is a significant security risk as anyone within the range of the network can intercept the data being transmitted. The use of SSL VPN can provide some level of security, but it is not sufficient as the wireless communication remains unprotected. This option is not a good choice as it does not provide strong security for the wireless network.
Option B - WPA using a pre-shared key:
WPA (Wi-Fi Protected Access) is a security protocol that provides strong encryption for wireless networks. It uses a pre-shared key (PSK) to authenticate users and devices to the network. The PSK is a shared secret that must be entered by all devices that want to connect to the network. This option provides backward compatibility as most devices that support wireless networking should be able to connect to a network secured with WPA using a pre-shared key.
Option C - WPA2 using a RADIUS back-end for 802.1x authentication:
WPA2 (Wi-Fi Protected Access version 2) is an improved version of WPA that provides stronger encryption and security features. It uses 802.1x authentication, which is a standard for port-based network access control. In this option, a RADIUS (Remote Authentication Dial-In User Service) server is used as a back-end to authenticate users and devices to the network. This option provides strong security and backward compatibility, as most devices that support wireless networking should be able to connect to a network secured with WPA2 using 802.1x authentication.
Option D - WEP with a 40-bit key:
WEP (Wired Equivalent Privacy) is an old and outdated security protocol that provides weak encryption for wireless networks. It uses a 40-bit key to encrypt data, which is easy to crack using modern computing power. This option is not a good choice as it does not provide strong security for the wireless network.
Conclusion:
The best option for providing strong security and backward compatibility when accessing the wireless network is Option C - WPA2 using a RADIUS back-end for 802.1x authentication. This option provides the strongest encryption and security features, while also ensuring backward compatibility with older devices. Option B - WPA using a pre-shared key is also a good choice, but it may not provide the same level of security as WPA2. Option A and Option D are not good choices as they provide weak or no encryption for wireless communication.
