Questions: Securing Home Wi-Fi: Passwords and Encryption
5 questions to test your understanding
Score: 0 / 5
Question 1 Multiple Choice
Your neighbor's Wi-Fi shows as 'Secured' in your device's network list. You suspect she hasn't changed the default router settings. What is the most accurate assessment of her network security?
AThe network is secure — 'Secured' means it is protected by strong encryption
BOnly the admin password matters; the 'Secured' label guarantees the data is unreadable
CThe security depends heavily on which protocol is used — WPA3 is strong, WPA2 is acceptable, but WEP is trivially breakable regardless of the 'Secured' label
DThe network is safe as long as the password is long enough, regardless of the protocol
The 'Secured' label only indicates that *some* password is required — it says nothing about the strength of the encryption protocol in use. WEP, despite appearing as 'Secured,' can be cracked in minutes with freely available tools regardless of password complexity. WPA2 is acceptable; WPA3 is the current standard. Protocol strength and password strength are both required — neither alone is sufficient. Most operating systems no longer even show which protocol a network uses, making this a common blind spot.
Question 2 Multiple Choice
A user sets an extremely long, random 20-character password on their home router but leaves the encryption protocol set to WEP. How secure is the Wi-Fi data on this network?
AVery secure — a 20-character random password defeats any brute-force attack
BSecure for practical purposes — WEP is old but still requires significant effort to crack
CModerately secure — WEP exposes only the most technically sophisticated attackers
DStill easily compromised — WEP has a fundamental cryptographic flaw that makes it crackable in minutes regardless of password length
WEP's weakness is not its key length — it is a fundamental flaw in how the encryption algorithm uses initialization vectors. Attackers can capture enough network traffic to mathematically reconstruct the key in minutes, making the password length irrelevant. This is the 'good lock with a strong key' fallacy: the lock itself is broken, so the key quality doesn't matter. Protocol selection is the first and most important decision; password strength only matters once you've chosen a sound protocol (WPA2 or WPA3).
Question 3 True / False
WPS (Wi-Fi Protected Setup) is a convenience feature that allows button-press device pairing without weakening your network's overall security.
TTrue
FFalse
Answer: False
WPS has a severe, well-documented vulnerability: its PIN-based authentication can be brute-forced in a matter of hours because the router reveals whether the first half of the 8-digit PIN is correct, effectively reducing the search space from 100 million to about 20,000 combinations. This attack bypasses your Wi-Fi password entirely — an attacker within range can gain full network access regardless of password strength. Disabling WPS eliminates this exposure with no practical cost if you connect devices by entering the password manually.
Question 4 True / False
Changing the router's default Wi-Fi password is sufficient to fully secure a home network, since the admin password mainly controls router settings and is not accessible from outside the home.
TTrue
FFalse
Answer: False
The admin password must also be changed. Default admin credentials (often 'admin'/'admin' or 'admin'/'password') are publicly documented and identical across thousands of routers of the same model. Any device that joins your network — including an attacker who cracks a weak WEP encryption — can access the router's admin interface at 192.168.1.1 and reconfigure the network: change DNS servers, enable port forwarding, install malicious firmware, or lock you out entirely. Securing only the Wi-Fi password while leaving admin credentials at default is like changing the front door lock while leaving the key in the back door.
Question 5 Short Answer
Explain the difference between a Wi-Fi password and an encryption protocol. Why do both matter for securing a home network, and what happens when one of them is weak?
Think about your answer, then reveal below.
Model answer: The Wi-Fi password controls *who can connect* to the network — it is the key that grants or denies access. The encryption protocol (WEP, WPA2, WPA3) controls *whether data traveling across the network can be read by someone who intercepts it* — it is the quality of the lock. A strong password with a weak protocol (WEP) means an attacker can bypass the key entirely through the broken lock. A strong protocol with a weak or default password means the encryption is sound but the key is easily guessed. Both must be strong: WPA2 minimum (WPA3 preferred) for the protocol, and a long, unique, random password to prevent unauthorized access.
This two-layer security model is fundamental. Even a fully connected attacker who can intercept all your wireless traffic cannot read the content if the encryption is strong. The password prevents them from being on the network at all. If either layer fails, the other only partially compensates. This is why security checklists for home routers address both separately rather than treating 'just set a good password' as sufficient.