Current ITS-110 Exam Dumps [2023] Complete CertNexus Exam Smoothly [Q20-Q37]

Rate this post

Current ITS-110 Exam Dumps [2023] Complete CertNexus Exam Smoothly

ITS-110 Premium PDF & Test Engine Files with 102 Questions & Answers

CertNexus ITS-110 certification exam is an excellent opportunity for professionals to demonstrate their expertise in IoT security and enhance their career prospects in this rapidly growing field.

Q20. An IoT service collects massive amounts of data and the developer is encrypting the data, forcing administrative users to authenticate and be authorized. The data is being disposed of properly and on a timely basis. However, which of the following countermeasures is the developer most likely overlooking?

That private data can never be fully destroyed.

The best practice to only collect critical data and nothing more.

That data isn’t valuable unless it’s used as evidence for crime committed.

That data is only valuable as perceived by the beholder.

Q21. If a site administrator wants to improve the secure access to a cloud portal, which of the following would be the BEST countermeasure to implement?

Require frequent password changes

Mandate multi-factor authentication (MFA)

Utilize role-based access control (RBAC)

Require separation of duties

Q22. An IoT software developer strives to reduce the complexity of his code to allow for efficient design and implementation. Which of the following terms describes the design principle he is implementing?

Calibration

Demodulation

Encapsulation

Abstraction

Q23. An IoT security practitioner should be aware of which common misconception regarding data in motion?

That transmitted data is point-to-point and therefore a third party does not exist.

The assumption that all data is encrypted properly and cannot be exploited.

That data can change instantly so old data is of no value.

The assumption that network protocols automatically encrypt data on the fly.

Q24. A developer needs to implement a highly secure authentication method for an IoT web portal. Which of the following authentication methods offers the highest level of identity assurance for end users?

A hardware-based token generation device

An X.509 certificate stored on a smart card

Two-step authentication with complex passwords

Multi-factor authentication with three factors

Q25. In order to minimize the risk of abusing access controls, which of the following is a good example of granular access control implementation?

System administrator access

Least privilege principle

Guest account access

Discretionary access control (DAC)

Q26. A manufacturer wants to ensure that approved software is delivered securely and can be verified prior to installation on its IoT devices. Which of the following technologies allows the manufacturer to meet this requirement?

Advanced Encryption Standard (AES)

Public Key Infrastructure (PKI)

Generic Routing Encapsulation (GRE)

Internet Protocol Security (IPsec)

Q27. An IoT security administrator wishes to mitigate the risk of falling victim to Distributed Denial of Service (DDoS) attacks. Which of the following mitigation strategies should the security administrator implement? (Choose two.)

Block all inbound packets with an internal source IP address

Block all inbound packets originating from service ports

Enable unused Transmission Control Protocol (TCP) service ports in order to create a honeypot

Block the use of Transmission Control Protocol (TCP) and User Datagram Protocol (UDP) through his perimeter firewall

Require the use of X.509 digital certificates for all incoming requests

Q28. An IoT manufacturer needs to ensure that firmware flaws can be addressed even after their devices have been deployed. Which of the following methods should the manufacturer use to meet this requirement?

Ensure that the bootloader can be accessed remotely using Secure Shell (SSH)

Ensure that a writable copy of the device’s configuration is stored in flash memory

Ensure that device can accept Over-the-Air (OTA) firmware updates

Ensure that ail firmware is signed using digital certificates prior to deployment

Q29. You made an online purchase of a smart watch from a software as a service (SaaS) vendor, and filled out an extensive profile that will help you track several fitness variables. The vendor will provide you with customized health insights based on your profile. With which of the following regulations should the company be compliant? (Choose three.)

Gramm-Leach-Bliley Act (GLBA)

Payment Card Industry Data Security Standard (PCI-DSS)

Federal Information Security Management Act (FISMA)

Sarbanes-Oxley (SOX)

Health Insurance Portability and Accountability Act (HIPAA)

Family Educational Rights and Privacy Act (FERPA)

Federal Energy Regulatory Commission (FERC)

Q30. An IoT security administrator wants to encrypt the database used to store sensitive IoT device dat a. Which of the following algorithms should he choose?

Triple Data Encryption Standard (3DES)

ElGamal

Rivest-Shamir-Adleman (RSA)

Secure Hash Algorithm 3-512 (SHA3-512)

Q31. An embedded engineer wants to implement security features to be sure that the IoT gateway under development will only load verified images. Which of the following countermeasures could be used to achieve this goal?

Implement Over-The-Air (OTA) updates

Enforce a secure boot function

Enforce a measured boot function

Harden the update server

Q32. A hacker is able to eavesdrop on administrative sessions to remote IoT sensors. Which of the following has most likely been misconfigured or disabled?

Secure Shell (SSH)

Internet Protocol Security (IPSec)

Telnet

Virtual private network (VPN)

Q33. An IoT developer discovers that clients frequently fall victim to phishing attacks. What should the developer do in order to ensure that customer accounts cannot be accessed even if the customer’s password has been compromised?

Implement two-factor authentication (2FA)

Enable Kerberos authentication

Implement account lockout policies

Implement Secure Lightweight Directory Access Protocol (LDAPS)

Q34. An IoT developer has endpoints that are shipped to users in the field. Which of the following best practices must be implemented for using default passwords after delivery?

Implement two-factor authentication (2FA)

Force a password change upon initial login

Apply granular role-based access

Protect against account enumeration

Q35. An Agile Scrum Master working on IoT solutions needs to get software released for a new IoT product. Since bugs could be found after deployment, which of the following should be part of the overall solution?

A money back guarantee, no questions asked

Over-the-Air (OTA) software updates

A lifetime transferable warranty

Free firmware updates if the product is sent back to the manufacturer

Q36. An IoT security administrator realizes that when he attempts to visit the administrative website for his devices, he is sent to a fake website. To which of the following attacks has he likely fallen victim?

Buffer overflow

Denial of Service (DoS)

Birthday attack

Domain name system (DNS) poisoning

Q37. Which of the following attacks would most likely be used to discover users, printers, and other objects within a network?

Distributed Denial of Service (DDoS)

SYN flood

LDAP Injection

Denial of Service (DoS)

Loading …

ITS-110 Premium Files Practice Valid Exam Dumps Question: https://www.prepawaytest.com/CertNexus/ITS-110-practice-exam-dumps.html

Leave a Reply Cancel reply