As part of large organization’s security policy how should a wireless security professional address to problem of rogue access points?

A.
Use a WPA-2 Enterprise complaint security solution with strong mutual authentication and encryption.

B.
Hide the SSID of legitimate APs on the network so that intruders cannot copy this parameter on rogue APs.

C.
All authorized APs should have there wired ports quarantined to specific VLAN for threat neutralization and analysis.

D.
A trained employee should install and monitor and WIPS rogue detection and response measures.

E.
Conduct through mutual facility scans with spectrum analyzers to detect rogue AP RF signature.

Explanation:
It should be noted that most businesses do not use a wired 802.1X/EAP solution for wired port control. Therefore a WLAN monitoring solution known as awireless intrusion detection system (WIDS)is always needed to detect potential rogue devices. Most WIDS vendors prefer to call their products awireless intrusion prevention system (WIPS). The reason that they refer to their products as prevention systems is that they are all now capable of mitigating attacks from rogue access points and rogue clients.