CompTIA Security+ (SY0-501) — Question 94

A security administrator is performing a risk assessment on a legacy WAP with a WEP-enabled wireless infrastructure. Which of the following should be implemented to harden the infrastructure without upgrading the WAP?

Answer options

• A. Implement WPA and TKIP
• B. Implement WPS and an eight-digit pin
• C. Implement WEP and RC4
• D. Implement WPA2 Enterprise

Correct answer: D

Explanation

The correct answer, D, is advisable because WPA2 Enterprise offers stronger encryption and better security protocols than WEP. Options A and B do not upgrade the security adequately, while C retains the insecure WEP standard, which is known to be vulnerable.