Exam SY0-501 topic 1 question 67 discussion

its WPA2+TKIP

"The WPA protocol implements much of the IEEE 802.11i standard. Specifically, the Temporal Key Integrity Protocol (TKIP) was adopted for WPA." Wikipedia

i think people should have already got to the point that Security+ examiners do not speak real world scenarios (like backwards compatibility in this case). they are only interested in knowing - what the best security solution is

If you have questions about this answer, you must have not done networking courses. Answer is Correct

yes I agree - 802.11i A wireless standard that added security features; also known as WPA2/ but the keyphrase is : "The equipment connecting to the wireless network uses older legacy equipment that was manufactured prior to the release of the 802.11i standard" conclusion: right Answer is - C. WPA+TKIP

802.11i A wireless standard that added security features; also known as WPA2

TKIP was designed by the IEEE 802.11i task group and the Wi-Fi Alliance as an interim solution to replace WEP ((( without requiring the replacement of legacy hardware. ))) source: https://en.wikipedia.org/wiki/Temporal_Key_Integrity_Protocol

the legacy device is irrelevant surely? the question states at the end what should be used for the new wireless device? I personally think they mention legacy to throw you off. a new device is surely capable of using WPA2 and CCMP so that is the right answer in my opinion

C is correct https://www.google.com/amp/s/www.pandasecurity.com/mediacenter/security/wpa-vs-wpa2/amp/

As per Darril Gibson book, WPA2 is also known as IEEE 802.11i ,so prior to 802.11i is WPA. TKIP is an older encryption protocol used with WPA, and CCMP is a newer encryption protocol used with WPA2.

WPA uses TKIP - both of these are deprecated. The successor is WPA2 with CCMP (AES). They aren't compatible, so you can use TKIP with WPA2 or CCMP with WPA. As we cant use 802.1x, this rules out all options with WPA2 or CCMP

WPA2 Wi-Fi Protected Access II (WPA2) is the permanent replacement for WPA. WPA2 (also known as IEEE 802.11i) uses stronger cryptography than WPA look het Form CompTIA Security+ Get Certified GetAhead SY0-501 Study Guide Darril Gibson

the correct answer is 'D'. according to howtogeek.com. "While WPA2 is supposed to use AES for optimal security, it can also use TKIP where backward compatibility with legacy devices is needed."this explains WPA2+TKIP

Furthermore, the subsequent question in the aforementioned video (at min 52:30), suggests that, REGARDLESS of the type of setting (TKIP or CCMP), WPA2 may still not be compatible with older devices; for some of them the only choice might be WPA, not WPA2.

I found a related question from CompTia Certmaster practice set, distributed and sold by CompTia specifically for Security+ exam preparation. The question is the following: What is the main security difference between WPA and WPA2? A. WPA2 supports AES encryption, WPA supports RC4 with TKIP B. WPA supports AES encryption, WPA2 supports RC4 with TKIP C. WPA2 supports AES encryption with TKIP, WPA supports RC4 without TKIP. D. WPA2 supports AES encryption, WPA supports 3DES The right answer given by the authors (which are the same who write the exam questions) is A. Note that they didn't write AES+TKIP for WPA2. You can verify watching this video (at min 50:35) https://www.youtube.com/watch?v=S9F6rY7p_aI So it seems that WPA2 for the authors is synonimous of AES+CCMP (although we know thatTKIP is a possible setting). So, if retrocompatibility is what matters here, the right answer should be C, WPA + TKIP.

It mentions pre 802.11i which means no WPA2.

WPA2-PSK (TKIP): This uses the modern WPA2 standard with older TKIP encryption. This isn’t secure, and is only a good idea if you have older devices that can’t connect to a WPA2-PSK (AES) network.