A manufacturer wants to ensure that approved software is delivered securely and can be verified prior to installation on its IoT devices. Which of the following technologies allows the manufacturer to meet this requirement?

• A.Internet Protocol Security (IPsec)
• B.Public Key Infrastructure (PKI)
• C.Advanced Encryption Standard (AES)
• D.Generic Routing Encapsulation (GRE)

Comment: *

Name: *

Email: *

Verification: *

An IoT system administrator discovers that end users are able to access administrative features on the company's IoT management portal. Which of the following actions should the administrator take to address this issue?

• A.Implement digitally signed firmware updates
• B.Implement account lockout policies
• C.Implement password complexity policies
• D.Implement granular role-based access

Comment: *

Name: *

Email: *

Verification: *

An IoT security architect needs to minimize the security risk of a radio frequency (RF) mesh application. Which of the following might the architect consider as part of the design?

• A.Prevent nodes from being rejected to keep the value of the network as high as possible.
• B.Make pairing between nodes very easy so that troubleshooting is reduced.
• C.Allow implicit trust of all gateways since they are the link to the internet.
• D.Encrypt data transmission between nodes at the physical/logical layers.

Comment: *

Name: *

Email: *

Verification: *

A hacker wants to record a live session between a user and a host in hopes that parts of the datastream can be used to spoof the session. Which of the following attacks is this person attempting?

• A.Bit flipping
• B.Reverse shell
• C.Session replay
• D.Fuzzing

Comment: *

Name: *

Email: *

Verification: *

An IoT device which allows unprotected shell access via console ports is most vulnerable to which of the following risks?

• A.Directory harvesting
• B.Rainbow table attacks
• C.Buffer overflow
• D.Malware installation

Comment: *

Name: *

Email: *

Verification: *