What is a potential flaw of MAC address filtering?

Study for the EC-Council Certified Ethical Hacker (CEH) v13 Exam. Utilize flashcards and multiple-choice questions with helpful hints and detailed explanations. Excel in your exam preparation!

Multiple Choice

What is a potential flaw of MAC address filtering?

Explanation:
MAC filtering is not a strong form of network authentication because the identifier it relies on—the device’s MAC address—can be observed, copied, or easily spoofed. If a device has an allowed MAC address, it can connect, and an attacker can masquerade as that device by changing their own NIC’s MAC to match. That means the filter can be bypassed, even when the device appears to have the right “credentials.” This is why MAC filtering should not be relied on as the sole defense. It’s useful as a light, secondary gate to deter casual access, but it doesn’t provide solid security on its own. For stronger protection, pair it with robust authentication like 802.1X/EAP and strong encryption (WPA2/WPA3), plus other controls such as network segmentation and monitoring.

MAC filtering is not a strong form of network authentication because the identifier it relies on—the device’s MAC address—can be observed, copied, or easily spoofed. If a device has an allowed MAC address, it can connect, and an attacker can masquerade as that device by changing their own NIC’s MAC to match. That means the filter can be bypassed, even when the device appears to have the right “credentials.”

This is why MAC filtering should not be relied on as the sole defense. It’s useful as a light, secondary gate to deter casual access, but it doesn’t provide solid security on its own. For stronger protection, pair it with robust authentication like 802.1X/EAP and strong encryption (WPA2/WPA3), plus other controls such as network segmentation and monitoring.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy