A wireless access point (WAP) is a networking device that lets wireless devices like laptops and smartphones connect to a wired network. In AP Cybersecurity, it's the device adversaries impersonate in evil twin attacks and disrupt in jamming attacks.
A wireless access point (WAP) is the device that turns a wired network into a wireless one. Think of it as the bridge between the cables running through a building and the Wi-Fi signal your phone latches onto. When you connect to Wi-Fi at school, a coffee shop, or the airport, you're connecting through a WAP.
Each WAP broadcasts a network name called an SSID (service set identifier). That's the name you see in your list of available networks, like "CoffeeShop_Guest." The catch is that anyone can name their WAP whatever they want, including copying a name you already trust. That's exactly why WAPs sit at the center of two of the wireless attacks you'll study in Unit 1.
The WAP lives in Unit 1: Introduction to Security, specifically Topic 1.3 Best Practices for Public Networks. It anchors two learning objectives. [AP Cybersecurity 1.3.B] asks you to identify types of wireless cyberattacks, and both the evil twin and jamming attacks target the WAP directly. [AP Cybersecurity 1.3.C] asks you to describe actions individuals can take to protect data on Wi-Fi, which starts with verifying you're connecting to the right WAP and not a fake one. Understanding the WAP is the foundation for almost everything about public-network safety on the exam.
Keep studying AP Cybersecurity Unit 1
Visual cheatsheet
view galleryEvil Twin Attack (Unit 1)
An evil twin is a malicious WAP an adversary sets up with an SSID identical or similar to a real network. You think you're joining the coffee shop's Wi-Fi, but you're actually handing your traffic to the attacker's access point. The WAP is the weapon here, not the victim.
Jamming Attack (Unit 1)
Instead of faking a WAP, jamming floods the airwaves with a strong electromagnetic signal on the same frequency, drowning out the real WAP. It's a denial-of-service move that knocks everyone offline by overwhelming the access point's signal.
SSID (Unit 1)
The SSID is the name a WAP broadcasts, and it's how you (and attackers) identify a network. EK 1.3.C.1 says to verify the SSID exactly matches the network you intend to join, because a one-character difference can mean you're connecting to an evil twin's WAP.
VPN (Unit 1)
Since you can never fully trust a public WAP, a VPN encrypts all your traffic before it leaves your device. Even if you accidentally connect to an evil twin WAP, the attacker captures encrypted gibberish instead of your readable data.
Expect WAP to show up in multiple-choice questions in two ways. First, as a straight definition question: a stem describes "a device that allows laptops and smartphones to connect wirelessly to a wired network," and you pick WAP. Second, as part of an attack scenario, like a user connecting to what looks like their company network but is actually attacker-controlled, where you identify the evil twin attack and recognize the rogue WAP behind it. You'll also see war-driving stems where an adversary detects beacons and identifies the SSID a WAP broadcasts. Know the difference between the WAP (the device), the SSID (the name it broadcasts), and the attacks that exploit both.
A WAP is the physical device that creates the wireless network. The SSID is just the name that device broadcasts. One WAP can have an SSID, but they aren't the same thing: the WAP is the hardware, the SSID is the label you see in your Wi-Fi list.
A wireless access point (WAP) is the device that connects wireless devices like laptops and phones to a wired network.
Every WAP broadcasts an SSID, which is the network name you see when choosing what Wi-Fi to join.
In an evil twin attack, an adversary sets up their own WAP with an SSID copied from a trusted network to capture your traffic.
In a jamming attack, an adversary floods the area with electromagnetic signal on the WAP's frequency to disrupt service.
To stay safe on public Wi-Fi, verify the SSID exactly matches the intended network and use a VPN so attackers only capture encrypted data.
A wireless access point (WAP) is a networking device that lets wireless devices connect to a wired network. On the AP exam, it appears in Topic 1.3 as the device adversaries impersonate in evil twin attacks and disrupt in jamming attacks.
No. The WAP is the physical device that creates the wireless network, while the SSID is just the network name the WAP broadcasts. You connect to a WAP, but you recognize it by its SSID.
In an evil twin attack, an adversary sets up their own WAP and gives it an SSID identical or similar to a legitimate network. Victims who connect to the fake WAP unknowingly route their traffic through the attacker, though encrypted protocols like HTTPS still protect their data.
Anyone can set up a WAP and name it anything, so you can't always tell a real one from a fake. EK 1.3.C.1 stresses verifying the SSID exactly matches the network you mean to join, and using a VPN protects your traffic even if you connect to a malicious WAP.
Yes. In a jamming attack, an adversary floods the area with a strong electromagnetic signal on the same frequency as the WAP, blocking everyone's access without needing you to connect to anything. It's a denial-of-service attack on the access point itself.
Connect this key term to the AP exam workflow: review the course, practice questions, and check related study tools.