Certified Ethical Hacker (CEH v12) — Question 194

As the Chief Information Security Officer (CISO) at a large university, you are responsible for the security of a campus-wide Wi-Fi network that serves thousands of students, faculty, and staff. Recently, there has been a rise in reports of unauthorized network access, and you suspect that some users are sharing their login credentials. You are considering deploying an additional layer of security that could effectively mitigate this issue. What would be the most suitable measure to implement in this context?

Answer options

• A. Implement network segmentation
• B. Deploy a VPN for the entire campus
• C. Enforce a policy of regularly changing Wi-Fi passwords
• D. Implement 802.1X authentication

Correct answer: D

Explanation

The correct answer is D, as 802.1X authentication provides a robust method for controlling access to the network by requiring users to authenticate before being granted access. This can effectively reduce unauthorized access, even if users share credentials. Options A and B do not directly address user authentication, while option C, though helpful, does not provide the same level of security as 802.1X.