var quiz = {
	questions : [
		{
			text : 'Which of the following statements is false?\n\n\n\n ',
			img : 'http://media.techtarget.com/WhatIs/images/spacer.gif',
			responses : [
				'a. Extended service set identifier (SSID) is a wireless LAN\'s name.',
				'b. SSID is sent in AP beacons so that stations can find the right WLAN.',
				'c. SSID is sent in probe requests so that stations can find the right WLAN.',
				'd. Omitting SSID from beacons prevents attackers from finding a WLAN.'
			],
			answer : 3,
			score : 1,
			expandedAnswer : '<br>End users and some stumblers may have trouble determining the name of your WLAN if SSID is omitted from beacons, but attackers can always obtain SSID by capturing many other frames that carry this name.',
			moreInfo : ''
		},
		{
			text : 'Which of the following is not a fast handoff option included in 802.11i?\n\n\n',
			img : 'http://media.techtarget.com/WhatIs/images/spacer.gif',
			responses : [
				'a. 802.1X key delivery',
				'b. Key caching',
				'c. Pre-authentication'
			],
			answer : 0,
			score : 1,
			expandedAnswer : '<br>Key caching and pre-authentication reduce the delay incurred when a station roams to a new AP and must use 802.1X to re-authenticate and re-key. In other words, 802.1X causes delay, while 802.11i key caching and pre-authentication options try to reduce that delay. ',
			moreInfo : ''
		},
		{
			text : 'Which of the following is not an alternative for controlling WLAN access?\n\n\n\n',
			img : 'http://media.techtarget.com/WhatIs/images/spacer.gif',
			responses : [
				'a. MAC ACLs',
				'b. LEAP',
				'c. EAP-MD5',
				'd. EAP-SIM'
			],
			answer : 2,
			score : 1,
			expandedAnswer : '<br>EAP-MD5 cannot be used in WLANs because it does not provide key delivery, mutual authentication or protection against man-in-the-middle attacks on authentication messages. MAC ACLs and LEAP also have serious vulnerabilities, but are still widely used in WLANs. EAP-SIM can be used to control WLAN access by devices like dual-mode phones with SIM cards.',
			moreInfo : ''
		},
		{
			text : 'When a wireless intrusion prevention system (WIPS) floods a rogue access point with deauthenticate messages, it is usually trying to:\n\n\n\n',
			img : 'http://media.techtarget.com/WhatIs/images/spacer.gif',
			responses : [
				'a. Locate the rogue so that it can be removed.',
				'b. Prevent unauthorized stations from communicating with the rogue.',
				'c. Prevent the rogue from communicating with the wired network.',
				'd. Inhibit communication between the rogue and legitimate stations.'
			],
			answer : 3,
			score : 1,
			expandedAnswer : '<br>Deauthenticates may also impact unauthorized stations, but the WIPS\' primary objective is to disconnect legitimate stations so that they cannot maintain associations with the rogue. Other WIPS tools can be used to locate or disconnect the rogue from the wired network. ',
			moreInfo : ''
		},
		{
			text : 'Which of the following can be used to compromise a WPA-protected WLAN?\n\n\n\n',
			img : 'http://media.techtarget.com/WhatIs/images/spacer.gif',
			responses : [
				'a. KisMAC',
				'b. Airsnort',
				'c. Airsnarf',
				'd. Airpwn'
			],
			answer : 0,
			score : 1,
			expandedAnswer : '<br>KisMAC is an attack tool written for Mac OS that can discover WLANs and crack either WEP keys or WPA-personal pre-shared keys. A cracked WPA-PSK can be used by the attacker to access the WLAN just like a legitimate user. Knowing the WPA-PSK may also let the attacker decrypt captured traffic.',
			moreInfo : ''
		},
		{
			text : 'Rogue access points that are not connected to your corporate network pose no business risk.\n\n',
			img : 'http://media.techtarget.com/WhatIs/images/spacer.gif',
			responses : [
				'a. True',
				'b. False'
			],
			answer : 1,
			score : 1,
			expandedAnswer : '<br>Employees that carry wireless devices -- for example, laptops used with wireless LANs at home or on the road -- may connect to rogue APs, exposing your network resources and data. In fact, most companies that have a "no wireless" policy find unauthorized associations between their employees and APs owned by neighboring businesses.',
			moreInfo : ''
		},
		{
			text : '802.1X Port Access Control can be used for wireless LAN authentication by companies with limited IT staff.\n\n',
			img : 'http://media.techtarget.com/WhatIs/images/spacer.gif',
			responses : [
				'a. True',
				'b. False'
			],
			answer : 0,
			score : 1,
			expandedAnswer : '<br>Although 802.1X is designed for enterprises with authentication infrastructure and IT staff to install and maintain it, alternatives exist for small businesses and others with limited resources, including open source RADIUS servers and outsourced 802.1X authentication services.',
			moreInfo : ''
		},
		{
			text : 'Which is the most effective method of keeping wireless visitor traffic from infiltrating your company network?\n\n\n',
			img : 'http://media.techtarget.com/WhatIs/images/spacer.gif',
			responses : [
				'a. Secure your WLAN with WPA-PSK',
				'b. Split your WLAN into Employee and Guest SSIDs',
				'c. Use 802.1X to return VLAN tags, then block untagged traffic'
			],
			answer : 2,
			score : 1,
			expandedAnswer : '<br>Like any group password, WPA-PSK is vulnerable to social engineering and grants every user the same WLAN access. Creating separate WLANs for guests and employees is a good start, but not enough -- you still need to segregate visitor traffic entering your network and stop visitors from using the employee WLAN. Option c. allows you to filter traffic sent by 802.1X-authenticated users so that you can block visitor traffic from reaching restricted portions of your network. ',
			moreInfo : ''
		},
		{
			text : 'Wireless interference from external sources can be avoided by:\n\n\n\n',
			img : 'http://media.techtarget.com/WhatIs/images/spacer.gif',
			responses : [
				'a. Coating your walls with RF-reflective paint.',
				'b. Placing APs in the middle of your facility.',
				'c. Using directional antennas to focus wireless transmissions.',
				'd. Reassigning channels used by your APs.'
			],
			answer : 3,
			score : 1,
			expandedAnswer : '<br>Radio interference is most commonly dealt with by avoiding congested channels -- like using 802.11a instead of 802.11g. Outside transmissions can reach well inside your building, passing through doors and walls. Centralizing APs or using directional antennas can reduce your own WLAN\'s signal leakage but won\'t stop external interference. ',
			moreInfo : ''
		},
		{
			text : 'Which of the following statements is true?\n\n\n\n ',
			img : 'http://media.techtarget.com/WhatIs/images/spacer.gif',
			responses : [
				'a. Given 802.11i, companies no longer need VPNs to protect wireless.',
				'b. WPA2 requires purchasing all new wireless hardware.',
				'c. An embedded WIPS cannot monitor the air full-time.',
				'd. A WIPS may help with compliance reporting.'
			],
			answer : 3,
			score : 1,
			expandedAnswer : '<br>Many WIPSes can now generate canned HIPAA, DoD and other compliance reports. Why are the other statements false? There are many scenarios that cannot be secured by 802.11i alone, like mobile workers at public hotspots. All Wi-Fi certified products have been required to support WPA2 for several years. Finally, embedded WIPSes are often capable of using monitor-only APs where full-time monitoring is required.',
			moreInfo : ''
		}
	]
};