Given: You are the network administrator for ABC Company. Your manager has recently attended
a wireless security seminar. The seminar speaker taught that a wireless network could be hidden
from potential intruders if you disabled the broadcasting of the SSID in Beacons and configured
the access points not to respond to Probe Request frames that have a null SSID field.
Your manager suggests implementing these security practices. What response should you give to
this suggestion? (Choose two)
Any 802.11 protocol analyzer can see the SSID in clear text in frames other than Beacons and
Probe Response frames. This negates any security benefit of trying to hide the SSID in Beacons
and Probe Response frames.
This security practice prevents manufacturers’ client utilities from detecting the SSID. As a
result, the SSID cannot be obtained by attackers, except through social engineering, guessing, or
use of a WIPS.
Although it does not benefit the security posture, hiding the SSID in Beacons and Probe
Response frames can be helpful for preventing some users (such as guests) from attempting to
connect to the corporate network.
Any tenants in the same building using advanced penetration testing tools will be able to obtain
the SSID by exploiting WPA EAPOL-Key exchanges. This poses an additional risk of exposing the
To improve security by hiding the SSID, the AP and client stations must both be configured to
remove the SSID from association request and response frames. Most WLAN products support