CertNexus ITS-110 Exam Questions

Term
1 / 12
Certified Internet of Things Security Practitioner (CIoTSP) Exam
Click the card to flip 👆
Terms in this set (12)
Certified Internet of Things Security Practitioner (CIoTSP) Exam
The Certified Internet of Things Security Practitioner (CIoTSP) is an industry-validated certification which helps professionals differentiate themselves from other job candidates by demonstrating their ability to put security concepts related to IoT into practice.
CIoTSP Exam Details
Exam Code: ITS-110Passing Score: 60 or 61% depending on exam formNumber of Items: 100Format: Multiple Choice/Multiple ResponseDuration: 120 minutes (including 5 minutes for Candidate Agreement and 5 minutes for Pearson VUE tutorial)Delievery: In person at Pearson VUE test centers or online via Pearson OnVUE online proctoring
Exam Domains
1.0 Securing IoT Portals 29%2.0 Implementing Authentication, Authorization, and Accounting 14%3.0 Securing Network Services 14%4.0 Securing Data 14%5.0 Addressing Privacy Concerns 12%6.0 Securing Software/Firmware 10%7.0 Enhancing Physical Security 7%
A DevOps engineer wants to provide secure network services to an IoT/cloud solution. Which of the following countermeasures should be implemented to mitigate network attacks that can render a network useless?A.Network firewallB.Denial of Service (DoS)/Distributed Denial of Service (DDoS) mitigationC.Web application firewall (WAF)D.Deep Packet Inspection (DPI)
Answer: B
A network administrator is looking to implement best practices for the organization's password policy. Which of the following elements should the administrator include?A.Maximum length restrictionB.Password history checksC.No use of special charactersD.No password expiration
Answer: B
Web forms that contain unvalidated fields are vulnerable to which of the following attacks? (Choose two.)A.SmurfB.Ping of deathC.Cross-Site Scripting (XSS)D.Man-in-the-middle (MITM)E.SQL Injection (SQLi)
Answer:C, E
Which of the following attacks relies on the trust that a website has for a user's browser?A.PhishingB.SQL Injection (SQLi)C.Cross-Site Scripting (XSS)D.Cross-Site Request Forgery (CSRF)
Answer: D
An IoT systems administrator wants to ensure that all data stored on remote IoT gateways is unreadable. Which of the following technologies is the administrator most likely to implement?A.Secure Hypertext Transmission Protocol (HTTPS)B.Internet Protocol Security (IPSec)C.Triple Data Encryption Standard (3DES)D.Message Digest 5 (MD5)
Answer: B
An IoT developer discovers that clients frequently fall victim to phishing attacks. What should the developer do in order to ensure that customer accounts cannot be accessed even if the customer's password has been compromised?A.Implement two-factor authentication (2FA)B.Enable Kerberos authenticationC.Implement account lockout policiesD.Implement Secure Lightweight Directory Access Protocol (LDAPS)
Answer: A
An IoT security architect needs to minimize the security risk of a radio frequency (RF) mesh application. Which of the following might the architect consider as part of the design?A. Make pairing between nodes very easy so that troubleshooting is reduced.B. Encrypt data transmission between nodes at the physical/logical layers.C. Prevent nodes from being rejected to keep the value of the network as high as possible.D. Allow implicit trust of all gateways since they are the link to the internet.
Answer: B
A cloud developer for an IoT service is storing billing information. Which of the following should be considered a common vulnerability in regard to this data that could be used to compromise privacy?A.Enabled notifications as required by lawB.Lack of data retention policiesC.Authorized access to personal informationD.Secured data in motion and at restAnswer: CNow you can pass the ITS-110 Certified Internet of Things Security Practitioner (CIoTSP) exam with ease. PassQuestion provides excellent quality CertNexus ITS-110 Exam Questions that will help you in reaching your goal easily.https://www.passquestion.com/its-110.html