For the OP - Home based wifi pretty much doesn't need anything other than just WPA AES encryption. Even trying to hide the SSID and using mac authentication is completely unnecessary. Seriously, who wants to even try and break into a home wifi system. There's no point to it. I know people think they have so much valuable digital stuff in their home network so they're ultra sensitive on the security, but people could care less about that. Now if it's open wifi or business/government, that's a bit different.
Your guy is looking way too much into this and is causing himself undo frustration. No one on the outside cares what he has on his network to try and break into it.
This is the absolute wrong way to think about security. "It'll never happen to me" is just asking for trouble. That being said, double-password protected WiFi for home or a RADIUS server is overkill.
A poorly secured wireless AP even on a home network is a script kiddies wet dream. Yeah, you might not have all your personal records or top secret corporate documents sitting on a network share, but once Joe Blow in the condo downstairs gets on your network, he can dump all sorts of nasties on every other computer on the network, and suddenly you start getting $10000 credit card bills for cards you never opened. Even in a best case breach, you've got a deadbeat running up your bill and degrading your connection running torrents on your dime and using up your monthly data.
Hell, home wireless security has only become as ubiquitous as it is now because the manufacturers started enabling it by default, otherwise you could spin your cantenna like a top and see two dozen new open APs regardless of where it lands like you could in 2000