[Q51-Q73] Verified ITS-110 dumps Q&As - Pass Guarantee or Full Refund [Sep-2023]

Verified ITS-110 dumps Q&As - Pass Guarantee or Full Refund [Sep-2023]

ITS-110 PDF Dumps | Sep 06, 2023 Recently Updated Questions 

NEW QUESTION # 51
An IoT device has many sensors on it and that sensor data is sent to the cloud. An IoT security practitioner should be sure to do which of the following in regard to that sensor data?

• A. The amount or type of data collected isn't important if you have a properly secured IoT device.
• B. Collect only the minimum amount of data required to perform all the business functions.
• C. Collect as much data as possible so as to maximize potential value of the new IoT use-case.
• D. The amount or type of data collected isn't important if you implement proper authorization controls.

Answer: B

NEW QUESTION # 52
An IoT system administrator discovers that end users are able to access administrative features on the company's IoT management portal. Which of the following actions should the administrator take to address this issue?

• A. Implement password complexity policies
• B. Implement account lockout policies
• C. Implement digitally signed firmware updates
• D. Implement granular role-based access

Answer: D

NEW QUESTION # 53
A software developer for an IoT device company is creating software to enhance the capabilities of his company's security cameras. He wants the end users to be confident that the software they are downloading from his company's support site is legitimate. Which of the following tools or techniques should he utilize?

• A. Digital certificate
• B. Interrupt analyzer
• C. Pseudocode
• D. Data validation

Answer: A

NEW QUESTION # 54
An IoT security architect needs to minimize the security risk of a radio frequency (RF) mesh application. Which of the following might the architect consider as part of the design?

• A. Prevent nodes from being rejected to keep the value of the network as high as possible.
• B. Allow implicit trust of all gateways since they are the link to the internet.
• C. Encrypt data transmission between nodes at the physical/logical layers.
• D. Make pairing between nodes very easy so that troubleshooting is reduced.

Answer: C

NEW QUESTION # 55
Accompany collects and stores sensitive data from thousands of IoT devices. The company's IoT security administrator is concerned about attacks that compromise confidentiality. Which of the following attacks is the security administrator concerned about? (Choose two.)

• A. Data diddling
• B. Salami
• C. Aggregation
• D. Denial of Service (DoS)
• E. Inference

Answer: C,E

NEW QUESTION # 56
An IoT security administrator wishes to mitigate the risk of falling victim to Distributed Denial of Service (DDoS) attacks. Which of the following mitigation strategies should the security administrator implement? (Choose two.)

• A. Enable unused Transmission Control Protocol (TCP) service ports in order to create a honeypot
• B. Block all inbound packets with an internal source IP address
• C. Require the use of X.509 digital certificates for all incoming requests
• D. Block all inbound packets originating from service ports
• E. Block the use of Transmission Control Protocol (TCP) and User Datagram Protocol (UDP) through his perimeter firewall

Answer: C,E

NEW QUESTION # 57
An IoT manufacturer discovers that hackers have injected malware into their devices' firmware updates. Which of the following methods could the manufacturer use to mitigate this risk?

• A. Ensure that all firmware updates are signed with a trusted certificate
• B. Ensure that firmware updates can only be installed by trusted administrators
• C. Ensure that all firmware updates are stored using 256-bit encryption
• D. Ensure that firmware updates are delivered using Internet Protocol Security (IPSec)

Answer: B

NEW QUESTION # 58
Network filters based on Ethernet burned-in-addresses are vulnerable to which of the following attacks?

• A. Packet injection
• B. GPS spoofing
• C. Media Access Control (MAC) spoofing
• D. Buffer overflow

Answer: C

NEW QUESTION # 59
A hacker is attempting to exploit a known software flaw in an IoT portal in order to modify the site's administrative configuration. Which of the following BEST describes the type of attack the hacker is performing?

• A. Transmission control protocol (TCP) flooding
• B. Birthday attack
• C. Privilege escalation
• D. Application fuzzing

Answer: C

NEW QUESTION # 60
A manufacturer wants to ensure that approved software is delivered securely and can be verified prior to installation on its IoT devices. Which of the following technologies allows the manufacturer to meet this requirement?

• A. Internet Protocol Security (IPsec)
• B. Generic Routing Encapsulation (GRE)
• C. Public Key Infrastructure (PKI)
• D. Advanced Encryption Standard (AES)

Answer: C

NEW QUESTION # 61
An IoT security practitioner should be aware of which common misconception regarding data in motion?

• A. The assumption that all data is encrypted properly and cannot be exploited.
• B. The assumption that network protocols automatically encrypt data on the fly.
• C. That transmitted data is point-to-point and therefore a third party does not exist.
• D. That data can change instantly so old data is of no value.

Answer: A

NEW QUESTION # 62
An IoT system administrator wants to mitigate the risk of rainbow table attacks. Which of the following methods or technologies can the administrator implement in order to address this concern?

• A. Require complex passwords
• B. Require frequent password changes
• C. Enable account lockout
• D. Enable account database encryption

Answer: D

NEW QUESTION # 63
A developer needs to implement a highly secure authentication method for an IoT web portal. Which of the following authentication methods offers the highest level of identity assurance for end users?

• A. Multi-factor authentication with three factors
• B. A hardware-based token generation device
• C. Two-step authentication with complex passwords
• D. An X.509 certificate stored on a smart card

Answer: A

NEW QUESTION # 64
An Agile Scrum Master working on IoT solutions needs to get software released for a new IoT product. Since bugs could be found after deployment, which of the following should be part of the overall solution?

• A. A lifetime transferable warranty
• B. Free firmware updates if the product is sent back to the manufacturer
• C. Over-the-Air (OTA) software updates
• D. A money back guarantee, no questions asked

Answer: C

NEW QUESTION # 65
Which of the following attacks utilizes Media Access Control (MAC) address spoofing?

• A. Unsecured network ports
• B. Network Address Translation (NAT)
• C. Man-in-the-middle (MITM)
• D. Network device fuzzing

Answer: C

NEW QUESTION # 66
Web forms that contain unvalidated fields are vulnerable to which of the following attacks? (Choose two.)

• A. Man-in-the-middle (MITM)
• B. SQL Injection (SQLi)
• C. Ping of death
• D. Cross-Site Scripting (XSS)
• E. Smurf

Answer: B,D

NEW QUESTION # 67
An IoT security administrator is concerned about an external attacker using the internal device management local area network (LAN) to compromise his IoT devices. Which of the following countermeasures should the security administrator implement? (Choose three.)

• A. Create a separate management virtual LAN (VLAN)
• B. Only allow outbound traffic from the management LAN
• C. Require the use of Password Authentication Protocol (PAP)
• D. Implement 802.1X for authentication
• E. Ensure that all IoT management servers are running antivirus software
• F. Ensure that the Time To Live (TTL) flag for outgoing packets is set to 1
• G. Ensure that all administrators access the management server at specific times

Answer: A,D,G

NEW QUESTION # 68
An IoT security architect needs to secure data in motion. Which of the following is a common vulnerability used to exploit unsecure data in motion?

• A. Misconfigured Secure Sockets Layer (SSL)/Transport Layer Security (TLS)
• B. External flash access
• C. Lack of memory space isolation
• D. Databases and datastores

Answer: A

NEW QUESTION # 69
Which of the following describes the most significant risk created by implementing unverified certificates on an IoT portal?

• A. Domain Name System (DNS) address records are more susceptible to hijacking.
• B. The portal's Internet Protocol (IP) address can more easily be spoofed.
• C. The portal's administrative functions do not require authentication.
• D. Man-in-the-middle (MITM) attacks can be used to eavesdrop on communications.

Answer: D

NEW QUESTION # 70
You work for an IoT software-as-a-service (SaaS) provider. Your boss has asked you to research a way to effectively dispose of stored sensitive customer dat a. Which of the following methods should you recommend to your boss?

• A. Overwriting
• B. Physical destruction
• C. Crypto-shredding
• D. Degaussing

Answer: B

NEW QUESTION # 71
Passwords should be stored...

• A. Only in cleartext.
• B. As a hash value.
• C. For no more than 30 days.
• D. Inside a digital certificate.

Answer: B

NEW QUESTION # 72
An IoT manufacturer needs to ensure that firmware flaws can be addressed even after their devices have been deployed. Which of the following methods should the manufacturer use to meet this requirement?

• A. Ensure that a writable copy of the device's configuration is stored in flash memory
• B. Ensure that ail firmware is signed using digital certificates prior to deployment
• C. Ensure that the bootloader can be accessed remotely using Secure Shell (SSH)
• D. Ensure that device can accept Over-the-Air (OTA) firmware updates

Answer: D

NEW QUESTION # 73
......

ITS-110 Exam Questions – Valid ITS-110 Dumps Pdf: https://www.freecram.com/CertNexus-certification/ITS-110-exam-dumps.html

ITS-110 Practice Test Questions Answers Updated 102 Questions: https://drive.google.com/open?id=1bxDMe6soHNX9AZTtsO2zRpObJ2_FkidE