Certified Ethical Hacker (CEH v12) — Question 144

You are a cybersecurity consultant for a major airport that offers free Wi-Fi to travelers. The management is concerned about the possibility of "Evil Twin" attacks, where a malicious actor sets up a rogue access point that mimics the legitimate one. They are looking for a solution that would not significantly impact the user experience or require travelers to install additional software. What is the most effective security measure you could recommend that fits these constraints, considering the airport's unique operational environment?

Answer options

• A. Regularly change the SSID of the airport's Wi-Fi network
• B. Use MAC address filtering on the airport's Wi-Fi network
• C. Implement WPA3 encryption for the airport's Wi-Fi network
• D. Display a captive portal page that warns users about the possibility of Evil Twin attacks

Correct answer: D

Explanation

The correct answer is D because displaying a captive portal page informs users about potential threats and encourages them to be cautious without disrupting their connectivity. Options A and B provide limited security benefits and could still leave users vulnerable, while option C, although beneficial, might require user intervention that could complicate the user experience.