Online Access Free ITS-110 Exam Questions

Which of the following methods or technologies is most likely to be used in order to mitigate brute force attacks?

• A.Role-based access control
• B.Automated security logging
• C.Account lockout policy
• D.Secure password recovery

In order to gain access to a user dashboard via an online portal, an end user must provide their username, a PIN, and a software token code. This process is known as:

• A.Two-factor authentication
• B.Type 2 authentication
• C.Biometric authentication
• D.Type 1 authentication

A web application is connected to an IoT endpoint. A hacker wants to steal data from the connection between them. Which of the following is NOT a method of attack that could be used to facilitate stealing data?

• A.SQL Injection (SQLi)
• B.LDAP Injection
• C.Cross-Site Request Forgery (CSRF)
• D.Cross-Site Scripting (XSS)

A corporation's IoT security administrator has configured his IoT endpoints to send their data directly to a database using Secure Sockets Layer (SSL)/Transport Layer Security (TLS). Which entity provides the symmetric key used to secure the data in transit?

• A.The administrator's machine
• B.The IoT endpoint
• C.The database server
• D.The Key Distribution Center (KDC)

Which of the following is one way to implement countermeasures on an IoT gateway to ensure physical security?

• A.Allow quick administrator access for mitigation
• B.Add tamper detection to the enclosure
• C.Limit physical access to ports when possible
• D.Implement features in software instead of hardware