Certified Ethical Hacker (CEH v13) — Question 197

As the Chief Information Security Officer (CISO) at a large university, you are responsible for the security of a campus-wide Wi-Fi network that serves thousands of students, faculty, and staff. Recently, there has been a rise in reports of unauthorized network access, and you suspect that some users are sharing their login credentials. You are considering deploying an additional layer of security that could effectively mitigate this issue. What would be the most suitable measure to implement in this context?

Answer options

• A. Implement network segmentation
• B. Deploy a VPN for the entire campus
• C. Enforce a policy of regularly changing Wi-Fi passwords
• D. Implement 802.1X authentication

Correct answer: D

Explanation

Implementing 802.1X authentication is the best choice as it provides a secure method for authenticating users before they can access the network, reducing the risk of credential sharing. Network segmentation and deploying a VPN enhance security but do not directly address the issue of unauthorized access due to shared credentials. Regularly changing Wi-Fi passwords can be cumbersome and may not effectively prevent credential sharing.