CertNexus ITS 110
Q: 1
A web administrator is concerned about injection attacks. Which of the following mitigation
techniques should the web administrator implement?
Options
Q: 2
A web application is connected to an IoT endpoint. A hacker wants to steal data from the connection
between them. Which of the following is NOT a method of attack that could be used to facilitate
stealing data?
Options
Q: 3
Network filters based on Ethernet burned-in-addresses are vulnerable to which of the following
attacks?
Options
Q: 4
An IoT integrator wants to deploy an IoT gateway at the Edge and have it connect to the cloud via
API. In order to minimize risk, which of the following actions should the integrator take before
integration?
Options
Q: 5
An IoT developer wants to ensure that their cloud management portal is protected against
compromised end-user credentials. Which of the following technologies should the developer
implement?
Options
Q: 6
An IoT security administrator realizes that when he attempts to visit the administrative website for
his devices, he is sent to a fake website. To which of the following attacks has he likely fallen victim?
Options
Q: 7
An embedded engineer wants to implement security features to be sure that the IoT gateway under
development will only load verified images. Which of the following countermeasures could be used
to achieve this goal?
Options
Q: 8
Recently, you purchased a smart watch from Company
Options
Q: 9
An IoT software developer wants the users of her software tools to know if they have been modified
by someone other than her. Which of the following tools or techniques should she use?
Options
Q: 10
Requiring randomly generated tokens for each connection from an IoT device to the cloud can help
mitigate which of the following types of attacks?
Options
Question 1 of 10
