Maximum Grades By Making ready With ITS-110 Dumps UPDATED 2024 [Q42-Q59]

Maximum Grades By Making ready With ITS-110 Dumps UPDATED 2024

Prepare ITS-110 Exam Questions [2024] Recently Updated Questions

NEW QUESTION # 42
A security practitioner wants to encrypt a large datastore. Which of the following is the BEST choice to implement?

• A. Diffie-Hellman (DH) algorithm
• B. Elliptic curve cryptography (ECC)
• C. Asymmetric encryption standards
• D. Symmetric encryption standards

Answer: D

NEW QUESTION # 43
A hacker is able to eavesdrop on administrative sessions to remote IoT sensors. Which of the following has most likely been misconfigured or disabled?

• A. Internet Protocol Security (IPSec)
• B. Secure Shell (SSH)
• C. Virtual private network (VPN)
• D. Telnet

Answer: A

NEW QUESTION # 44
You made an online purchase of a smart watch from a software as a service (SaaS) vendor, and filled out an extensive profile that will help you track several fitness variables. The vendor will provide you with customized health insights based on your profile. With which of the following regulations should the company be compliant? (Choose three.)

• A. Gramm-Leach-Bliley Act (GLBA)
• B. Health Insurance Portability and Accountability Act (HIPAA)
• C. Federal Energy Regulatory Commission (FERC)
• D. Sarbanes-Oxley (SOX)
• E. Federal Information Security Management Act (FISMA)
• F. Family Educational Rights and Privacy Act (FERPA)
• G. Payment Card Industry Data Security Standard (PCI-DSS)

Answer: B,F,G

NEW QUESTION # 45
An IoT security administrator is concerned about an external attacker using the internal device management local area network (LAN) to compromise his IoT devices. Which of the following countermeasures should the security administrator implement? (Choose three.)

• A. Ensure that the Time To Live (TTL) flag for outgoing packets is set to 1
• B. Implement 802.1X for authentication
• C. Create a separate management virtual LAN (VLAN)
• D. Ensure that all administrators access the management server at specific times
• E. Ensure that all IoT management servers are running antivirus software
• F. Require the use of Password Authentication Protocol (PAP)
• G. Only allow outbound traffic from the management LAN

Answer: B,C,D

NEW QUESTION # 46
A manufacturer wants to ensure that user account information is isolated from physical attacks by storing credentials off-device. Which of the following methods or technologies best satisfies this requirement?

• A. Border Gateway Protocol (BGP)
• B. Role-Based Access Control (RBAC)
• C. Remote Authentication Dial-In User Service (RADIUS)
• D. Password Authentication Protocol (PAP)

Answer: C

NEW QUESTION # 47
In order to gain access to a user dashboard via an online portal, an end user must provide their username, a PIN, and a software token code. This process is known as:

• A. Biometric authentication
• B. Two-factor authentication
• C. Type 1 authentication
• D. Type 2 authentication

Answer: B

NEW QUESTION # 48
Which of the following encryption standards should an IoT developer select in order to implement an asymmetric key pair?

• A. Elliptic curve cryptography (ECC)
• B. Temporal Key Integrity Protocol (TKIP)
• C. Triple Data Encryption Standard (3DES)
• D. Advanced Encryption Standard (AES)

Answer: A

NEW QUESTION # 49
An IoT developer has endpoints that are shipped to users in the field. Which of the following best practices must be implemented for using default passwords after delivery?

• A. Implement two-factor authentication (2FA)
• B. Protect against account enumeration
• C. Apply granular role-based access
• D. Force a password change upon initial login

Answer: D

NEW QUESTION # 50
During a brute force test on his users' passwords, the security administrator found several passwords that were cracked quickly. Which of the following passwords would have taken the longest to crack?

• A. **myPASSword**
• B. Gu3$$MyP@s$w0Rd
• C. 123my456password789
• D. GUESSmyPASSWORD

Answer: B

NEW QUESTION # 51
An IoT systems integrator has a very old IoT gateway that doesn't offer many security features besides viewing a system configuration page via browser over HTTPS. The systems integrator can't get their modern browser to bring up the page due to a cipher suite mismatch. Which of the following must the integrator perform before the configuration page can be viewed?

• A. Upgrade the browser, as older browsers have stopped allowing connections to hosts that use only outdated cipher suites.
• B. Upgrade the browser, as modern browsers have stopped allowing connections to hosts that use only outdated cipher suites.
• C. Downgrade the browser, as modern browsers have stopped allowing connections to hosts that use only outdated cipher suites.
• D. Downgrade the browser, as modern browsers have continued allowing connections to hosts that use only outdated cipher suites.

Answer: A

NEW QUESTION # 52
An IoT security practitioner should be aware of which common misconception regarding data in motion?

• A. That data can change instantly so old data is of no value.
• B. That transmitted data is point-to-point and therefore a third party does not exist.
• C. The assumption that network protocols automatically encrypt data on the fly.
• D. The assumption that all data is encrypted properly and cannot be exploited.

Answer: D

NEW QUESTION # 53
If an attacker were able to gain access to a user's machine on your network, which of the following actions would she most likely take next?

• A. Perform port scanning
• B. Escalate privileges
• C. Initiate reconnaissance
• D. Start log scrubbing

Answer: C

NEW QUESTION # 54
Which of the following methods or technologies is most likely to be used to protect an IoT portal against protocol fuzzing?

• A. Secure Hypertext Transfer Protocol (HTTPS)
• B. Next-Generation Firewall (NGFW)
• C. Public Key Infrastructure (PKI)
• D. Hash-based Message Authentication Code (HMAC)

Answer: B

NEW QUESTION # 55
An IoT developer needs to ensure that user passwords for a smartphone app are stored securely. Which of the following methods should the developer use to meet this requirement?

• A. Encrypt all stored passwords using 128-bit Twofish
• B. Store all passwords in read-only memory
• C. Encrypt all stored passwords using 256-bit Advanced Encryption Standard (AES-256)
• D. Hash all passwords using Message Digest 5 (MD5)

Answer: C

NEW QUESTION # 56
An IoT security architect needs to secure data in motion. Which of the following is a common vulnerability used to exploit unsecure data in motion?

• A. External flash access
• B. Lack of memory space isolation
• C. Databases and datastores
• D. Misconfigured Secure Sockets Layer (SSL)/Transport Layer Security (TLS)

Answer: D

NEW QUESTION # 57
An IoT security administrator wants to encrypt the database used to store sensitive IoT device dat a. Which of the following algorithms should he choose?

• A. ElGamal
• B. Secure Hash Algorithm 3-512 (SHA3-512)
• C. Rivest-Shamir-Adleman (RSA)
• D. Triple Data Encryption Standard (3DES)

Answer: A

NEW QUESTION # 58
What is one popular network protocol that is usually enabled by default on home routers that creates a large attack surface?

• A. Domain Name System Security Extensions (DNSSEC)
• B. Open virtual private network (VPN)
• C. Universal Plug and Play (UPnP)
• D. Network Address Translation (NAT)

Answer: C

NEW QUESTION # 59
......

CertNexus ITS-110 certification is a must-have credential for anyone who wants to specialize in IoT security. It validates an individual's knowledge and skills in securing IoT devices and networks and is recognized by employers worldwide. If you are looking to advance your career in IoT security, then the ITS-110 certification is definitely worth considering.

 

Give push to your success with ITS-110 exam questions: https://passguide.prep4pass.com/ITS-110_exam-braindumps.html