
100%合格、売れ筋最上位ITS-110試験材料は2024年最新のCertNexus練習試験合格させます
Certified IoT Security Practitioner問題集でITS-110試験完全版問題、試験学習ガイド
質問 # 49
Which of the following describes the most significant risk created by implementing unverified certificates on an IoT portal?
- A. Domain Name System (DNS) address records are more susceptible to hijacking.
- B. The portal's administrative functions do not require authentication.
- C. The portal's Internet Protocol (IP) address can more easily be spoofed.
- D. Man-in-the-middle (MITM) attacks can be used to eavesdrop on communications.
正解:D
質問 # 50
A hacker is able to extract users' names, birth dates, height, and weight from an IoT manufacturer's user portal. Which of the following types of data has been compromised?
- A. Protected health information
- B. Personally identifiable information
- C. Personal identity information
- D. Personal health information
正解:B
質問 # 51
An embedded developer is about to release an IoT gateway. Which of the following precautions must be taken to minimize attacks due to physical access?
- A. Remove all unneeded physical ports
- B. Allow easy access to components
- C. Install a firewall on network ports
- D. Allow access only to the software
正解:A
質問 # 52
A manufacturer wants to ensure that approved software is delivered securely and can be verified prior to installation on its IoT devices. Which of the following technologies allows the manufacturer to meet this requirement?
- A. Internet Protocol Security (IPsec)
- B. Generic Routing Encapsulation (GRE)
- C. Advanced Encryption Standard (AES)
- D. Public Key Infrastructure (PKI)
正解:D
質問 # 53
Which of the following methods is an IoT portal administrator most likely to use in order to mitigate Distributed Denial of Service (DDoS) attacks?
- A. Disable Network Address Translation Traversal (NAT-T) at the border firewall
- B. Require Internet Protocol Security (IPSec) for all inbound portal connections
- C. Implement Domain Name System Security Extensions (DNSSEC) on all Internet-facing name servers
- D. Implement traffic scrubbers on the upstream Internet Service Provider (ISP) connection
正解:D
質問 # 54
An IoT security architect needs to minimize the security risk of a radio frequency (RF) mesh application. Which of the following might the architect consider as part of the design?
- A. Prevent nodes from being rejected to keep the value of the network as high as possible.
- B. Make pairing between nodes very easy so that troubleshooting is reduced.
- C. Encrypt data transmission between nodes at the physical/logical layers.
- D. Allow implicit trust of all gateways since they are the link to the internet.
正解:C
質問 # 55
Accompany collects and stores sensitive data from thousands of IoT devices. The company's IoT security administrator is concerned about attacks that compromise confidentiality. Which of the following attacks is the security administrator concerned about? (Choose two.)
- A. Aggregation
- B. Salami
- C. Data diddling
- D. Denial of Service (DoS)
- E. Inference
正解:A、E
質問 # 56
Web forms that contain unvalidated fields are vulnerable to which of the following attacks? (Choose two.)
- A. Cross-Site Scripting (XSS)
- B. Ping of death
- C. Man-in-the-middle (MITM)
- D. SQL Injection (SQLi)
- E. Smurf
正解:A、D
質問 # 57
If an attacker were able to gain access to a user's machine on your network, which of the following actions would she most likely take next?
- A. Start log scrubbing
- B. Perform port scanning
- C. Initiate reconnaissance
- D. Escalate privileges
正解:C
質問 # 58
Which of the following attacks relies on the trust that a website has for a user's browser?
- A. Cross-Site Scripting (XSS)
- B. Phishing
- C. Cross-Site Request Forgery (CSRF)
- D. SQL Injection (SQLi)
正解:C
質問 # 59
In designing the campus of an IoT device manufacturer, a security consultant was hired to recommend best practices for deterring criminal behavior. Which of the following approaches would he have used to meet his client's needs?
- A. British Standard 7799 part 3 (BS 7799-3)
- B. Crime Prevention Through Environmental Design (CPTED)
- C. International Organization for Standardization 17799 (ISO 17799)
- D. National Institute of Standards and Technology Cybersecurity Framework (NIST CSF)
正解:B
質問 # 60
An IoT manufacturer discovers that hackers have injected malware into their devices' firmware updates. Which of the following methods could the manufacturer use to mitigate this risk?
- A. Ensure that firmware updates are delivered using Internet Protocol Security (IPSec)
- B. Ensure that firmware updates can only be installed by trusted administrators
- C. Ensure that all firmware updates are stored using 256-bit encryption
- D. Ensure that all firmware updates are signed with a trusted certificate
正解:B
質問 # 61
What is one popular network protocol that is usually enabled by default on home routers that creates a large attack surface?
- A. Network Address Translation (NAT)
- B. Open virtual private network (VPN)
- C. Domain Name System Security Extensions (DNSSEC)
- D. Universal Plug and Play (UPnP)
正解:D
質問 # 62
An IoT security architect wants to implement Bluetooth between two nodes. The Elliptic Curve Diffie-Hellman (ECDH) cipher suite has been identified as a requirement. Which of the following Bluetooth versions can meet this requirement?
- A. BLE v4.1
- B. BLE v4.2
- C. Any of the BLE versions
- D. Bluetooth Low Energy (BLE) v4.0
正解:C
質問 # 63
An IoT developer has endpoints that are shipped to users in the field. Which of the following best practices must be implemented for using default passwords after delivery?
- A. Apply granular role-based access
- B. Implement two-factor authentication (2FA)
- C. Protect against account enumeration
- D. Force a password change upon initial login
正解:D
質問 # 64
A hacker is attempting to exploit a known software flaw in an IoT portal in order to modify the site's administrative configuration. Which of the following BEST describes the type of attack the hacker is performing?
- A. Transmission control protocol (TCP) flooding
- B. Birthday attack
- C. Privilege escalation
- D. Application fuzzing
正解:C
質問 # 65
An IoT security administrator is determining which cryptographic algorithm she should use to sign her server's digital certificates. Which of the following algorithms should she choose?
- A. Rijndael
- B. Rivest-Shamir-Adleman (RSA)
- C. Rivest Cipher 6 (RC6)
- D. Diffie-Hellman (DH)
正解:B
質問 # 66
Which of the following technologies allows for encryption of networking communications without requiring any configuration on IoT endpoints?
- A. Elliptic curve cryptography (ECC)
- B. Internet Protocol Security (IPSec)
- C. Virtual private network (VPN)
- D. Transport Layer Security (TLS)
正解:C
質問 # 67
An IoT security administrator is concerned that someone could physically connect to his network and scan for vulnerable devices. Which of the following solutions should he install to prevent this kind of attack?
- A. Network Access Control (NAC)
- B. Host Intrusion Detection System (HIDS)
- C. Network Intrusion Detection System (NIDS)
- D. Media Access Control (MAC)
正解:C
質問 # 68
An Agile Scrum Master working on IoT solutions needs to get software released for a new IoT product. Since bugs could be found after deployment, which of the following should be part of the overall solution?
- A. Over-the-Air (OTA) software updates
- B. A lifetime transferable warranty
- C. A money back guarantee, no questions asked
- D. Free firmware updates if the product is sent back to the manufacturer
正解:A
質問 # 69
......
正真正銘のベスト試験材料ITS-110オンライン練習試験:https://jp.fast2test.com/ITS-110-premium-file.html
ITS-110テストエンジン練習試験:https://drive.google.com/open?id=17QCOtClkoUCOh0xXlHXlB5HfQgGbj-g1