Forum

question about by-product of an 802.1X/EAP

3 posts by 3 authors in: Forums > CWSP - Enterprise Wi-Fi Security
Last Post: July 3, 2018:

By Marie February 19, 2015

Reply

Hello,

I am self-studying for the CWSP and I am confused about this study question...

"When used for wireless security, what is a by-product of an 802.1X/EAP type with mutual authentication?"

answer is "Dynamic encryption key generation" but why is it not "master session key (MSK)"

thanks for any input.

Marie
By wirelesssguru March 15, 2015

Reply

Marie,

Great question and I can see your confusion.

Think top down. First process is the MSK -- MSK is generated on the authentication server (radius server). It is very high level and one of the first processes. The MSK is used for seeding material for the PMK. But remember 802.1X is authentication, after authentication you THEN have a encryption process (4 way). So, what is the by-prouduct of EAP ? Once EAP is done it means you created PMK keys on both sides. These PMKs can now be used for creating your encryption. So that would be the correct answer.

Page 1 of 1

1

Success Stories

I literally just came out of the testing centre having taken the CWDP exam. The certification process opened my mind to different techniques and solutions. This knowledge can only broaden your perspective. Great job, CWNP, you have a great thing going on here.
-Darren

Working through the CWNP coursework and certifications helped not only to deepen my technical knowledge and understanding, but also it boosted my confidence. The hard work it took to earn my CWNE has been rewarding in so many ways.
-Ben

I want to commend you and all at CWNP for having a great organization. You really 'raise the bar' on knowing Wi-Fi well. I have learned a ton of information that is helping my job experience and personal career goals, because of my CWAP/CWDP/CWSP studies. Kudos to all at CWNP.
-Glenn