nerdexam
GIAC

GPEN · Question #73

GPEN Question #73: Real Exam Question with Answer & Explanation

The correct answer is C. Wireless Transport Layer Security (WTLS). WTLS is the WAP-specific security protocol that provides privacy, data integrity, and mutual authentication for wireless client-server communications.

Question

You work as an Administrator for Bluesky Inc. The company has 145 Windows XP Professional client computers and eighty Windows 2003 Server computers. You want to install a security layer of WAP specifically designed for a wireless environment. You also want to ensure that the security layer provides privacy, data integrity, and authentication for client-server communications over a wireless network. Moreover, you want a client and server to be authenticated so that wireless transactions remain secure and the connection is encrypted. Which of the following options will you use to accomplish the task?

Options

  • AWired Equivalent Privacy (WEP)
  • BVirtual Private Network (VPN)
  • CWireless Transport Layer Security (WTLS)
  • DRecovery Console

Explanation

WTLS is the WAP-specific security protocol that provides privacy, data integrity, and mutual authentication for wireless client-server communications.

Common mistakes.

  • A. WEP (Wired Equivalent Privacy) is a link-layer Wi-Fi encryption standard, not a WAP security layer protocol, and it does not provide the full client-server authentication and integrity features described.
  • B. VPN creates encrypted tunnels over any network but is not a WAP-specific security layer and does not fulfill the requirement of a protocol designed specifically for the wireless application protocol environment.
  • D. Recovery Console is a Windows diagnostic and repair tool used to restore system files and is completely unrelated to wireless security or WAP.

Concept tested. WAP security layer - Wireless Transport Layer Security

Reference. https://www.openmobilealliance.org/release/WAP/V2_0-20010713-C/WAP-261-WTLS-20010713-c.pdf

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full GPEN Practice