This chapter covers the evolution of wireless security protocols from WEP through WPA3, a critical topic for the CompTIA A+ 220-1101 exam, specifically under Objective 2.2 (Networking). You'll learn the mechanisms, vulnerabilities, and correct configurations for each protocol. Expect roughly 5-8% of exam questions to touch on wireless security, often asking you to identify the most secure option or recognize the weaknesses of deprecated protocols. Master this chapter to confidently answer questions about encryption standards, authentication methods, and best practices for securing wireless networks.
Jump to a section
Imagine a bank vault door that evolves over time. WEP is like a cheap padlock with a fixed 10-digit combination that never changes. Anyone who watches you enter the combination can easily memorize it and open the lock later. WPA is like upgrading to a keypad that generates a new 4-digit code every time you enter, but the algorithm used to generate the code is weak and can be reverse-engineered if someone records enough codes. WPA2 is like a modern electronic lock with a 128-bit encryption key, but it uses the same key for every transaction until you manually change it. WPA3 is the latest vault door with individual keypads for each employee, each generating a unique one-time code per access, and the key exchange uses a secure handshake that prevents eavesdropping even if the attacker has recorded all previous exchanges. Each upgrade addresses specific vulnerabilities of the previous generation, just as bank security evolves to counter new theft techniques.
What is Wireless Security and Why Does it Exist?
Wireless networks broadcast data over radio waves, making them inherently vulnerable to eavesdropping, unauthorized access, and tampering. Unlike wired networks where physical access is required to tap into the cable, wireless signals propagate through walls and can be captured by anyone within range. Wireless security protocols provide confidentiality (encryption), integrity (preventing modification), and authentication (verifying identity) over the air. The CompTIA A+ 220-1101 exam expects you to understand the progression from WEP to WPA3, including the specific flaws of each generation and the correct deployment scenarios.
WEP (Wired Equivalent Privacy)
WEP was introduced in 1997 as part of the original IEEE 802.11 standard. It aimed to provide security equivalent to a wired network but failed catastrophically.
How WEP Works: - WEP uses the RC4 stream cipher for encryption. - It supports 64-bit and 128-bit key lengths (40-bit or 104-bit key plus 24-bit initialization vector, IV). - The IV is sent in plaintext as part of the frame header. - Encryption process: The RC4 algorithm generates a key stream from the concatenation of the IV and the pre-shared key (PSK). The key stream is XORed with the plaintext data to produce ciphertext. - Integrity is provided by a 32-bit CRC-32 checksum (ICV) appended to the data before encryption.
Key Components and Values: - Default IV: 24 bits, reused after 2^24 frames (about 16 million frames). On busy networks, IV collision occurs within hours. - Key length: 64-bit (40-bit key + 24-bit IV) or 128-bit (104-bit key + 24-bit IV). - Authentication: Open System or Shared Key authentication. Shared Key uses challenge-response but still relies on the same RC4 key, so it is no more secure.
Vulnerabilities: - IV reuse: Because the IV is only 24 bits and sent in plaintext, an attacker can capture frames with the same IV and perform statistical analysis to recover the key. Tools like aircrack-ng can crack WEP in minutes with sufficient captured packets. - Weak IVs: Some IVs produce predictable RC4 key streams, making attacks easier. - No replay protection: WEP does not prevent replay attacks. - CRC-32 is a linear function, so an attacker can modify the ciphertext and adjust the ICV without detection.
WEP on the Exam: The 220-1101 exam will test that WEP is deprecated and should never be used. You may be asked to identify its key length (64/128-bit) or the cipher (RC4). Expect questions that present WEP as a distractor for the most secure option.
WPA (Wi-Fi Protected Access)
WPA was created in 2003 as an interim solution to address WEP's flaws while 802.11i (WPA2) was being finalized. It uses TKIP (Temporal Key Integrity Protocol) with RC4 encryption.
How WPA Works: - TKIP wraps the existing RC4 engine but adds:
Per-packet key mixing: Each frame uses a unique 128-bit encryption key derived from the base key, the transmitter MAC address, and a sequence counter.
Message Integrity Code (MIC): A 64-bit Michael algorithm replaces CRC-32 to prevent forgery.
IV sequencing: A 48-bit IV (called TKIP Sequence Counter, TSC) prevents replay attacks by rejecting frames with out-of-order TSCs.
Authentication: WPA-PSK (Pre-Shared Key) for SOHO or WPA-Enterprise with 802.1X/RADIUS for larger networks.
Key Components and Values: - Cipher: RC4 with TKIP. - Key length: 128-bit per-packet key derived from 256-bit master key. - TSC: 48 bits, incremented per frame. - MIC: Michael algorithm, 64-bit. - PSK minimum length: 8 characters, maximum 63.
Vulnerabilities: - TKIP is still based on RC4 and is subject to certain attacks, such as Beck-Tews (2008) that can decrypt small packets. - Michael MIC is weak; after two MIC failures in 60 seconds, the AP disassociates all stations and stops accepting traffic for 60 seconds (TKIP countermeasure). - In 2009, the Hole196 vulnerability allowed a client to decrypt other clients' traffic in WPA-PSK mode.
WPA on the Exam: Know that WPA uses TKIP/RC4 and is considered deprecated. The exam may ask which protocol replaced WEP (WPA) or which uses TKIP. Be aware that WPA is not secure enough for modern use.
WPA2 (IEEE 802.11i)
WPA2 became mandatory for Wi-Fi certification in 2006. It replaces RC4 with AES-based CCMP (Counter Mode with Cipher Block Chaining Message Authentication Code Protocol).
How WPA2 Works: - WPA2 uses AES (Advanced Encryption Standard) in Counter mode for encryption and CBC-MAC for integrity (CCMP). - The encryption process: 1. A 48-bit packet number (PN) is incremented for each frame. 2. The PN, the key, and other data are used to construct a nonce for AES-CTR. 3. The plaintext data is encrypted using AES-CTR. 4. A MIC is computed using AES-CBC-MAC over the data and header fields. - Authentication: WPA2-PSK (pre-shared key) or WPA2-Enterprise (802.1X). - The 4-Way Handshake: When a client associates, it performs a 4-way handshake with the AP to derive fresh session keys from the PSK or from the 802.1X master key.
Key Components and Values: - Cipher: AES-CCMP (mandatory). TKIP is allowed for backward compatibility but is deprecated. - Key length: 128-bit AES key. - PN: 48 bits, prevents replay. - PSK: 256-bit derived from passphrase (PMK). - 4-Way Handshake: Messages 1-4 exchange nonces and verify key integrity.
Vulnerabilities: - KRACK (Key Reinstallation Attack, 2017): Exploits the 4-Way Handshake by forcing nonce reuse, breaking encryption. Patches are available. - WPS (Wi-Fi Protected Setup) PIN brute-force: Many WPA2 routers with WPS enabled allow attackers to brute-force the 8-digit PIN in hours, revealing the PSK. - Offline dictionary attacks on PSK: Capturing the 4-Way Handshake allows attackers to attempt to guess the passphrase offline.
WPA2 on the Exam: The 220-1101 exam expects you to know that WPA2 uses AES/CCMP and is the current minimum standard for wireless security. You should be able to differentiate WPA2 from WPA and WEP. Be aware that WPA2-PSK is vulnerable to dictionary attacks if the passphrase is weak.
WPA3 (Wi-Fi Protected Access 3)
WPA3 was introduced in 2018 and is mandatory for Wi-Fi 6 certification. It addresses the weaknesses of WPA2, particularly KRACK and offline dictionary attacks.
How WPA3 Works: - WPA3 uses SAE (Simultaneous Authentication of Equals) for the handshake, replacing the 4-Way Handshake. SAE is based on Dragonfly Key Exchange, which provides forward secrecy and resists offline dictionary attacks. - Encryption: WPA3 uses AES-CCMP (128-bit) for WPA3-Personal and AES-GCMP (256-bit) for WPA3-Enterprise. - SAE handshake: 1. Both parties commit to a secret value using a cryptographic commitment. 2. They exchange confirmation values to prove knowledge of the password without revealing it. 3. A shared secret is derived, which cannot be computed offline by an attacker who captured the exchange. - Additional features:
Opportunistic Wireless Encryption (OWE) for open networks: Provides encryption without authentication (equivalent to WPA2 with no password).
Wi-Fi Easy Connect (DPP) for simplified setup.
Key Components and Values: - Cipher: AES-CCMP (128-bit) or AES-GCMP-256 (Enterprise). - Handshake: SAE (Dragonfly). - Forward secrecy: Compromising the long-term key does not compromise past sessions. - Anti-clogging: SAE includes a mechanism to prevent denial-of-service attacks.
Vulnerabilities: - Dragonblood attacks (2019): Found vulnerabilities in early implementations, but these have been patched. - Side-channel attacks on SAE: Some implementations leak timing information.
WPA3 on the Exam: You should know that WPA3 is the most secure Wi-Fi encryption standard, using SAE and AES. It is required for Wi-Fi 6 certification. The exam may ask which protocol provides forward secrecy or resists offline dictionary attacks. Be prepared to identify WPA3 as the recommended standard for new deployments.
Summary Table of Key Differences
| Protocol | Cipher | Authentication | Key Features | Deprecated? | |----------|--------|----------------|--------------|-------------| | WEP | RC4 | Open/Shared | Weak IV, CRC-32 | Yes | | WPA | RC4/TKIP | PSK or 802.1X | Per-packet key, MIC | Yes | | WPA2 | AES-CCMP | PSK or 802.1X | Strong encryption, 4-Way Handshake | No, but aging | | WPA3 | AES-CCMP/GCMP | SAE (Personal) or 802.1X (Enterprise) | Forward secrecy, offline attack resistance | No (current) |
Configuration and Verification Commands
For a Windows client, you can view the security settings of a Wi-Fi network:
netsh wlan show profiles
netsh wlan show profile name="ProfileName" key=clearThe output shows the authentication and cipher (e.g., WPA2-Personal, AES).
On Linux, use:
iwconfig wlan0 | grep -i securityOr for detailed info:
wpa_cli statusFor router configuration, you typically access the web interface and navigate to Wireless Security settings. The exact options depend on the manufacturer, but you should select WPA2-PSK (AES) or WPA3-SAE as the security mode.
WEP Encryption Process
1. The access point (AP) and client share a static pre-shared key (PSK) (40-bit or 104-bit). 2. For each frame, the AP generates a 24-bit initialization vector (IV) and concatenates it with the PSK to form an RC4 seed. 3. RC4 generates a pseudorandom key stream from the seed. 4. The plaintext data plus a 32-bit CRC-32 integrity check value (ICV) are XORed with the key stream to produce ciphertext. 5. The IV is prepended to the ciphertext in plaintext. 6. The receiver uses the IV from the frame and its own PSK to regenerate the key stream and decrypt. The IV reuse and weak RC4 implementation make WEP vulnerable.
WPA TKIP Key Mixing
1. WPA uses a 256-bit pairwise master key (PMK) derived from the PSK. 2. For each frame, a per-packet key is generated by mixing the PMK with the transmitter MAC address and a 48-bit TKIP sequence counter (TSC). 3. The mixing ensures each packet uses a unique RC4 key, preventing the IV reuse attacks that plagued WEP. 4. The per-packet key is 128 bits. 5. A 64-bit Michael MIC is computed over the data and source/destination MACs to provide integrity. 6. The TSC is incremented per frame and included in the frame header to prevent replay. 7. The RC4 encryption is applied as in WEP but with the per-packet key. Despite improvements, TKIP still uses RC4 and has known weaknesses.
WPA2 4-Way Handshake
1. After association, the AP sends an EAPOL-Key frame containing an Authenticator Nonce (ANonce). 2. The client generates a Supplicant Nonce (SNonce) and derives the Pairwise Transient Key (PTK) from the PMK, ANonce, SNonce, and both MAC addresses. 3. The client sends an EAPOL-Key frame containing the SNonce and a MIC computed with the PTK. 4. The AP derives the same PTK, verifies the MIC, and sends a third EAPOL-Key frame containing the GTK (Group Temporal Key) encrypted with the PTK and a MIC. 5. The client acknowledges with a fourth EAPOL-Key frame. The handshake is vulnerable to KRACK if an attacker forces nonce reuse by replaying message 3.
WPA3 SAE Handshake
1. The AP and client agree on a finite cyclic group (e.g., elliptic curve). 2. Both generate a random private scalar and a commitment (a value that commits to a secret without revealing it). 3. They exchange commitments. 4. After receiving the commitment, each party sends a confirmation value that proves knowledge of the password without revealing it. 5. Both compute a shared secret using the password and the exchanged values. 6. The shared secret is used to derive a Pairwise Master Key (PMK). 7. The PMK is then used in a 4-way handshake-like process to derive session keys. The SAE handshake provides forward secrecy and prevents offline dictionary attacks because an attacker cannot compute the shared secret from captured messages.
WPA2 vs WPA3 Encryption Comparison
1. WPA2 uses AES-CCMP: AES in Counter mode for encryption and CBC-MAC for authentication. The packet number (PN) is 48 bits. 2. WPA3-Personal uses AES-CCMP as well, but the handshake is SAE instead of the 4-Way Handshake. 3. WPA3-Enterprise offers optional 256-bit AES-GCMP (Galois/Counter Mode) for higher security. 4. Both use a 128-bit AES key for CCMP. 5. The encryption process for CCMP: construct a nonce from PN, priority, and MAC address; encrypt using AES-CTR; compute MIC using AES-CBC-MAC. 6. The key difference is the authentication method: WPA2 uses PSK or 802.1X with the 4-Way Handshake; WPA3 uses SAE which inherently resists offline dictionary attacks.
Enterprise Deployment of WPA2-Enterprise
In a corporate environment, WPA2-Enterprise with 802.1X and RADIUS is the standard. An organization deploys multiple access points managed by a controller. Users authenticate using their domain credentials or certificates. The RADIUS server (e.g., FreeRADIUS, Microsoft NPS) validates the user and passes session keys to the AP. This setup solves the problem of managing PSKs for hundreds of users; each user has unique credentials, and if a user leaves, only that user's access is revoked. Configuration involves setting the AP to WPA2-Enterprise mode, specifying the RADIUS server IP, shared secret, and port (1812 for authentication, 1813 for accounting). Common pitfalls: misconfigured RADIUS shared secrets cause authentication failures; outdated firmware may not support the latest EAP methods (e.g., EAP-TLS with certificate validation). Performance is generally good, but the RADIUS server can become a bottleneck during peak login times. If the RADIUS server goes down, new authentications fail, but existing sessions continue until reauthentication (typically every 8-24 hours).
SOHO Deployment of WPA2-PSK
In a small office/home office (SOHO), WPA2-PSK with AES is typical. The owner sets a passphrase on the router. All devices share the same key. This solves the problem of simple setup but introduces the risk that if the passphrase is shared with a guest, they can access the network. To mitigate, many routers offer a guest network with a separate SSID and PSK. Configuration: log into the router web interface, navigate to Wireless Security, select WPA2-PSK, choose AES (not TKIP), and enter a strong passphrase (at least 12 characters, mix of letters/numbers/symbols). Common issues: users select "WPA2-PSK (TKIP)" for compatibility with older devices, but this reduces security and performance. Another issue is using a weak passphrase that is easily guessed via dictionary attack. The 4-Way Handshake can be captured by an attacker within range, and tools like aircrack-ng can crack weak passphrases offline.
Upgrading to WPA3
As of 2024, many new devices support WPA3. An enterprise upgrading to WPA3 must ensure all clients support SAE. WPA3 offers mixed mode (WPA2/WPA3 transition mode) where the AP advertises both WPA2 and WPA3 capabilities. Clients that support WPA3 use SAE; legacy clients use the 4-Way Handshake. This solves the problem of gradual migration. However, mixed mode is only as secure as WPA2 for legacy clients. Configuration: on supported APs, select WPA3-SAE for Personal or WPA3-Enterprise for 802.1X. For transition mode, select WPA2/WPA3. Performance: SAE handshake is computationally heavier than the 4-Way Handshake, but modern hardware handles it easily. Misconfiguration: if the AP is set to WPA3-only, legacy devices cannot connect. Also, some older routers have buggy SAE implementations that cause frequent disconnections.
Exam Focus: What the 220-1101 Tests
Under Objective 2.2 (Networking), the exam expects you to:
Identify the security features of WEP, WPA, WPA2, and WPA3.
Know which protocols are deprecated and why.
Understand the encryption ciphers (RC4, TKIP, AES-CCMP, AES-GCMP).
Recognize authentication methods (PSK vs. Enterprise).
Be aware of specific vulnerabilities (e.g., IV reuse, KRACK, offline dictionary attacks).
Common Wrong Answers and Why
Choosing WPA2-TKIP as the most secure option. Many candidates conflate WPA2 with TKIP, but WPA2 mandates AES. TKIP is only for backward compatibility and is deprecated. The exam expects you to select AES over TKIP.
Thinking WEP uses AES. WEP uses RC4. Some candidates see "128-bit" and assume AES, but WEP's 128-bit key is still RC4.
Believing WPA3 uses TKIP. WPA3 uses AES only. TKIP is not part of WPA3.
Confusing WPA with WPA2. WPA uses TKIP/RC4; WPA2 uses AES/CCMP. The exam may ask "Which protocol uses AES?" – answer is WPA2 or WPA3, not WPA.
Specific Numbers and Terms on the Exam
WEP key lengths: 64-bit (40-bit key + 24-bit IV) and 128-bit (104-bit key + 24-bit IV).
WPA2 cipher: AES-CCMP (128-bit key).
WPA3 handshake: SAE (Simultaneous Authentication of Equals).
TKIP countermeasure: 60-second lockout after two MIC failures.
IV size: WEP 24-bit, WPA TKIP 48-bit, WPA2 CCMP 48-bit.
Edge Cases and Exceptions
Some older devices only support WEP or WPA-TKIP. The exam may ask which security method to use if a legacy device cannot support WPA2. The answer is to upgrade the device, not to use WEP.
In a mixed environment, WPA2/WPA3 transition mode allows both. But the exam might ask which is more secure: WPA3-only.
WPA3-Enterprise offers 192-bit security mode (GCMP-256) for government use, but the 220-1101 only covers the basics.
How to Eliminate Wrong Answers
If the question asks for "most secure," eliminate WEP and WPA first. Then choose between WPA2 and WPA3. WPA3 is always more secure.
If the question mentions "TKIP," it's either WPA or WPA2 mixed mode. The correct answer for a secure network is AES.
If the question asks about "replay protection," look for protocols with sequence numbers (WPA, WPA2, WPA3 all have them; WEP does not).
If the question asks about "offline dictionary attack resistance," the answer is WPA3 (SAE).
WEP uses RC4 with a 24-bit IV and is completely insecure; never use it.
WPA uses TKIP/RC4 with per-packet key mixing and a 48-bit IV; deprecated.
WPA2 uses AES-CCMP with a 48-bit packet number; current minimum standard.
WPA3 uses SAE handshake and AES encryption; provides forward secrecy and offline dictionary attack resistance.
WPA3-Enterprise offers optional 192-bit security mode with GCMP-256.
TKIP countermeasure: AP disassociates clients for 60 seconds after two MIC failures.
WPA2-PSK is vulnerable to offline dictionary attacks; use strong passphrases (12+ characters).
KRACK attack exploits the 4-Way Handshake in WPA2; patched by updating firmware.
These come up on the exam all the time. Here's how to tell them apart.
WPA2-PSK
Uses 4-Way Handshake with PMK derived from PSK
Vulnerable to offline dictionary attacks if handshake captured
No forward secrecy; compromise of PSK decrypts all past traffic
Encryption: AES-CCMP (128-bit)
Backward compatible with WPA clients (if TKIP enabled)
WPA3-SAE
Uses SAE (Dragonfly) handshake resistant to offline attacks
Provides forward secrecy; past sessions remain secure even if password compromised
Encryption: AES-CCMP (128-bit) or AES-GCMP-256 (Enterprise)
Not backward compatible with WPA2; requires SAE support
Mandatory for Wi-Fi 6 certification
Mistake
WPA2 uses TKIP by default.
Correct
WPA2 mandates AES-CCMP as the default cipher. TKIP is only supported for backward compatibility and is deprecated. The 220-1101 exam expects you to associate WPA2 with AES.
Mistake
WEP 128-bit is as secure as WPA2 128-bit.
Correct
WEP uses the RC4 cipher with a 24-bit IV that is reused, allowing attackers to crack the key in minutes. WPA2 uses AES-CCMP with a 48-bit packet number and strong key management. Key length alone does not determine security.
Mistake
WPA3 is only for Wi-Fi 6 devices.
Correct
WPA3 can be used with Wi-Fi 5 (802.11ac) and even Wi-Fi 4 (802.11n) devices if they support it. However, WPA3 is mandatory for Wi-Fi 6 certification. The exam may test that WPA3 is not exclusive to Wi-Fi 6.
Mistake
WPA-PSK uses a 128-bit pre-shared key.
Correct
WPA-PSK uses a 256-bit pairwise master key (PMK) derived from a passphrase of 8-63 characters. The passphrase itself is not the key. The exam may ask about the PMK length.
Mistake
WPA2-Enterprise is the same as WPA2-PSK.
Correct
WPA2-Enterprise uses 802.1X with a RADIUS server for per-user authentication, while WPA2-PSK uses a single pre-shared key for all clients. The exam expects you to know the difference and which is more suitable for large organizations.
Reveal each answer, then mark whether you got it right. Score 60%+ to unlock the next chapter.
WPA2-PSK uses a single pre-shared key (passphrase) for all clients, suitable for home/small office. WPA2-Enterprise uses 802.1X with a RADIUS server, providing unique credentials per user. Enterprise mode is more secure and manageable for larger networks. On the exam, you may be asked which is appropriate for a business; answer is Enterprise.
WPA3 is not directly backward compatible, but many access points support a mixed mode (WPA2/WPA3 transition mode) where the AP advertises both capabilities. Clients that support WPA3 use SAE; legacy clients use WPA2. However, mixed mode is only as secure as WPA2 for legacy clients. The exam may ask about transition mode.
TKIP (Temporal Key Integrity Protocol) was designed as a fix for WEP, using RC4 with per-packet key mixing and a MIC. However, it still uses RC4 and has known vulnerabilities (e.g., Beck-Tews attack). TKIP is deprecated; modern networks should use AES-CCMP. The exam may ask which cipher is used by WPA (TKIP) and which is used by WPA2 (AES).
WPA3 uses the SAE (Simultaneous Authentication of Equals) handshake, which employs a zero-knowledge proof. The password is never transmitted, and an attacker who captures the handshake cannot perform an offline dictionary attack because the messages do not reveal enough information to verify password guesses. The exam may ask which protocol provides this protection.
The 4-Way Handshake is a sequence of four EAPOL-Key frames exchanged between the client and AP after association. It derives session keys (PTK and GTK) from the PMK and nonces. It is vulnerable to KRACK if an attacker forces nonce reuse. The exam may ask about the purpose of the handshake or its vulnerability.
WPA2 defaults to AES-CCMP (Counter Mode with Cipher Block Chaining Message Authentication Code Protocol). TKIP is available for backward compatibility but is not the default. On the exam, always associate WPA2 with AES.
WEP is completely insecure and should never be used. It can be cracked in minutes with readily available tools. The CompTIA A+ exam expects you to know that WEP is deprecated and that you should use at least WPA2. If a device only supports WEP, replace it.
You've just covered Wireless Security: WEP, WPA, WPA2, WPA3 — now see how well it sticks with free 220-1101 practice questions. Full explanations included, no account needed.
Done with this chapter?