Which policy change would prevent the continued use of weak wireless encryption such as WEP?

• A. Upgrade wireless hotspots to the most secure encryption and authentication available.
• B. Downgrade to WEP to be compatible.
• C. Remove encryption completely.
• D. Disable wireless access.

Answer: (A)

Enforcing strong wireless encryption and modern authentication is the effective policy. WEP is insecure because its short initialization vectors and RC4-based encryption let attackers recover keys and decrypt traffic with relatively little data. Upgrading the network to the most secure encryption and authentication available—such as WPA3 with AES-CCMP—establishes a secure default that prevents weaker fallbacks from being negotiated. This approach stops the continued use of weak encryption by requiring all devices and access points to support and use current, strong standards. Downgrading to WEP would reintroduce risk, removing encryption eliminates confidentiality, and disabling wireless access is overly drastic and unnecessary when a proper upgrade already resolves the issue.