312-50V11 · Question #971
The security team of Debry Inc. decided to upgrade Wi-Fi security to thwart attacks such as dictionary attacks and key recovery attacks. For this purpose, the security team started implementing cuttin
The correct answer is D. WPA3. WPA3 introduces Simultaneous Authentication of Equals (SAE), also called Dragonfly Key Exchange, replacing PSK to provide strong resistance against dictionary and key recovery attacks.
Question
Options
- AWEP
- BWPA
- CWPA2
- DWPA3
How the community answered
(44 responses)- A2% (1)
- B2% (1)
- C7% (3)
- D89% (39)
Why each option
WPA3 introduces Simultaneous Authentication of Equals (SAE), also called Dragonfly Key Exchange, replacing PSK to provide strong resistance against dictionary and key recovery attacks.
WEP uses the RC4 stream cipher with static keys and is cryptographically broken, offering no protection against dictionary or key recovery attacks.
WPA uses TKIP and a PSK-based model that is still susceptible to offline dictionary attacks against captured 4-way handshakes.
WPA2 uses CCMP/AES with PSK but remains vulnerable to offline dictionary attacks via captured 4-way handshakes or PMKID, the exact weaknesses WPA3 SAE is designed to eliminate.
WPA3 mandates SAE (Simultaneous Authentication of Equals), based on the Dragonfly handshake, which provides forward secrecy and eliminates offline dictionary attacks by deriving a unique session key per authentication without transmitting a verifiable handshake. This directly replaces the PSK concept used in WPA2, removing the vulnerability to PMKID capture and 4-way handshake dictionary attacks.
Concept tested: WPA3 SAE Dragonfly key exchange Wi-Fi security
Source: https://www.wi-fi.org/discover-wi-fi/security
Topics
Community Discussion
No community discussion yet for this question.