In this blog post, I am going to summerise my CWAP notes. This is currently a work in progress. So I will be updating this post as I read through the chapters and add more notes.
1.5 Ensure appropriate troubleshooting methods are used with all analysis types 1.5.1 Define the problem
1.5.2 Determine the scale of the problem
1.5.3 Identify probable causes
1.5.4 Capture and analyze the data
1.5.5 Observe the problem
1.5.6 Choose appropriate remediation steps
1.5.7 Document the problem and resolution
4.1 Understand frame encapsulation and frame aggregation
1.1 Capture 802.11 frames using appropriate methods and locations
1.2 Analyse 802.11 frame captures to discover problems and find solutions
1.3 understand and apply common capture configuration parameters available in protocol analysis tools
1.4 Utilize additional tools that capture 802.11 frames for the purposes of analysis and troubleshooting
3.1 Understanding and describing the functions of the PLCP and PMD sublayers
3.2 Applying the understanding of the PHY technologies (including PHY headers, preambles, Training fields, frame aggregation and data rates) to captured data.
3.3 Identify and using PHY information provided in pseudo-headers within protocol analyzers.
3.4 Recognizing the limits of protocol analysers in capturing PHY information including NULL data packets and PHY Headers
3.5 Using appropriate capture devices based on an understanding of PHY types.
Chapter 4: 802.11 MAC Frames
Chapter 5: BSS Association, Transition and Security Exchanges
Chapter 6: Medium Access Methods and Qos Frames Exchanges
Chapter 7: MAC Operations
Chapter 8: HT and VHT Operations
Chapter 9: Spectrum Analysis
Exam Objectives
1.0 - Protocol Analysis 15%
1.1 Capture 802.11 frames using the appropriate methods and locations
1.1.1 Install monitor mode drivers
1.1.2 Select appropriate capture device
1.1.3 Select appropriate capture location
1.1.4 Capture for an appropriate amount of time-based on the problem scenario
1.1.5 Scanning channels vs. capturing on a single channel
1.1.6 Capturing in roaming scenarios
1.1.7 Capture with portable protocol analyzers (laptops)
1.1.8 Capture with APs, controllers, and other management solutions
1.1.9 Capture with specialty devices such as handheld analyzers
1.2 Analyze 802.11 frame captures to discover problems and find solutions
1.2.1 Use appropriate display filters to view relevant frames and packets
1.2.2 Use colorization to highlight important frames and packets
1.2.3 Configure and display columns for analysis purposes
1.2.4 View frame and packet decodes and understand the information shown and apply it to the analysis process
1.2.5 Use multiple adapters and channel aggregation to view captures from multiple channels
1.2.6 Implement protocol analyzer decryption procedures
1.2.7 View and use captures statistical information for analysis
1.2.8 Use expert mode for analysis
1.2.9 View and understand peer maps as they relate to communications analysis
1.3 Understand and apply the common capture configuration parameters available in protocol analysis tools
1.3.1 Save to disk
1.3.2 Packet slicing
1.3.3 Event triggers
1.3.4 Buffer options
1.3.5 Channels and channel widths
1.3.6 Capture filters
1.3.7 Channel scanning and dwell time
1.4 Utilize additional tools that capture 802.11 frames for the purposes of analysis and troubleshooting
1.4.1 WLAN scanners and discovery tools
1.4.2 Protocol capture visualization and analysis tools
1.4.3 Centralized monitoring, alerting and forensic tools
1.5 Ensure appropriate troubleshooting methods are used with all analysis types 1.5.1 Define the problem
1.5.2 Determine the scale of the problem
1.5.3 Identify probable causes
1.5.4 Capture and analyze the data
1.5.5 Observe the problem
1.5.6 Choose appropriate remediation steps
1.5.7 Document the problem and resolution
2.0 - Spectrum Analysis 15%
2.1 Capture RF spectrum data and understand the common views available in spectrum analyzers
2.1.1 Install, configure and use spectrum analysis software and hardware
Configure Wi-Fi integration
Save and export capture data
2.1.2 Capture RF spectrum data using handheld, laptop-based and infrastructure spectrum capture solutions
2.1.3 Understand and use spectrum analyzer views
Real-time FFT
Waterfall, swept spectrogram, density, and historic views
Utilization and duty cycle Detected devices
WLAN integration views
2.2 Analyze spectrum captures to identify relevant RF information and issues
2.2.1 Determine the RF noise floor in an environment
2.2.2 Determine Signal-to-Noise Ration (SNR) for a given signal
2.2.3 Locate and identify sources of RF interference
2.2.4 Identify RF channel utilization
2.2.5 Analyze a non-Wi-Fi transmitter and its impact on WLAN communications 2.2.6 Overlapping and non-overlapping adjacent channel interference
2.2.7 Poor performing or faulty radios
2.3 Analyze spectrum captures to identify various device signatures
2.3.1 Identify frequency hopping devices
2.3.2 Identify various 802.11 PHYs
802.11b
802.11g
802.11a
802.11n
802.11ac
Channel widths
Primary channel
2.3.3 Identify non-802.11 devices based on RF behaviors and signatures
Microwave oven
Video devices
Jammers
Cordless phones
2.4 Centralised spectrum analysis solutions
2.4.1 AP-based spectrum analysis
2.4.2 Sensor-based spectrum analysis
3.0 - PHY Layers and Technologies 10%
3.1 Understand and describe the functions and the PLCP and PMD sublayers
3.2 Apply the understanding of PHY technologies (including PHY headers, preambles, training fields, frame aggregation, and data rates) to captured data
3.2.1 DSSS
3.2.2 HR/DSSS
3.2.3 OFDM
3.2.4 ERP
3.2.5 HT
3.2.6 VHT
3.3 Identify and use PHY information provided in pseudo-headers within protocol analysers
3.3.1 Pseudo-header formats
Radiotap
Per Packet Information (PPI)
3.3.2 Signal strength
3.3.3 Data rate and MCS index
3.3.4 Length information
3.3.5 Channel center frequency or received channel
3.3.6 Channel properties
3.3.7 Noise
3.4 Recognize the limits of protocol analyzers in capturing PHY information including NULL data packets and PHY headers
3.5 Use appropriate capture devices based on an understanding of PHY types
3.5.1 Supported PHYs 3.5.2 Supported spatial streams 3.5.3 Short Guard Interval (SGI)
4.0 - MAC Sublayer and Functions 25%
4.1 Understand frame encapsulation and frame aggregation
4.2 Identify and use MAC information in captured data for analysis
4.2.1 Management, control, and data frames
4.2.2 MAC Frame Format
Frame Control Field
To DS and From DS
Address Fields
Frame Check Sequence (FCS)
4.2.3 802.11 Management Frame Formats
Information Elements
Authentication
Association and Reassociation
Beacon
Probe Request and Probe Response
4.2.4 Data and QoS Data Frame Formats
4.2.5 802.11 Control Frame Formats
Acknowledgment
RTS/CTS
Block Acknowledgement and related frames
4.3 Validate BSS configuration through protocol analysis
4.3.1 Country code
4.3.2 Minimum basic rate
4.3.3 Supported rates
4.3.4 Beacon intervals
4.3.5 WMM settings
4.3.6 RSN settings
4.3.7 HT and VHT operations
4.3.8 Channel width
4.3.9 Primary channel
4.3.10 Hidden or non-broadcast SSIDs
4.4 Identify and analyze CRC error frames and retransmitted frames
5.0 - WLAN Medium Access 10%
5.1 Understand 802.11 contention algorithms in-depth and know how they impact WLANs
5.1.1 Distributed Coordination Function (DCF)
Carrier Sense and Energy Detect
Network Allocation Vector (NAV)
Contention Window (CW) and random backoff
Interframe Spacing
5.1.2 Enhanced Distributed Channel Access (EDCA)
EDCA Function (EDCAF)
Access Categories and Queues
AIFSN 5.1.3 Wi-Fi Multimedia (WMM)
WMM parameters
WMM Power Save
WMM Admission Control
5.2 Analyse QoS configuration and operations
5.2.1 Verify QoS parameters in capture files
5.2.2 Ensure QoS is implemented end-to-end
6.0 - 802.11 Frame Exchanges 25%
6.1 Capture, understand, and analyse BSS discovery and joining frame exchanges