nerdexam
ExamsSY0-301Questions#401
CompTIA

SY0-301 · Question #401

SY0-301 Question #401: Real Exam Question with Answer & Explanation

The correct answer is A: WPA2 CCMP. WPA2 with CCMP (Counter Mode with Cipher Block Chaining Message Authentication Code Protocol) is the most secure option because it uses AES (Advanced Encryption Standard) as its underlying cipher, which is a FIPS-approved, highly robust encryption algorithm. WPA (choice B) uses t

Question

A network administrator has been tasked with securing the WLAN. Which of the following cryptographic products would be used to provide the MOST secure environment for the WLAN?

Options

  • AWPA2 CCMP
  • BWPA
  • CWPA with MAC filtering
  • DWPA2 TKIP

Explanation

WPA2 with CCMP (Counter Mode with Cipher Block Chaining Message Authentication Code Protocol) is the most secure option because it uses AES (Advanced Encryption Standard) as its underlying cipher, which is a FIPS-approved, highly robust encryption algorithm. WPA (choice B) uses the older TKIP protocol, which has known cryptographic weaknesses. Adding MAC filtering (choice C) to WPA does not strengthen the encryption itself - MAC addresses can be spoofed easily. WPA2 TKIP (choice D) is a downgrade from WPA2 CCMP; TKIP was designed as a stopgap and is considered legacy and vulnerable. WPA2 CCMP = AES encryption = strongest WLAN security among the choices.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full SY0-301 Practice