Question 1

In order to minimize the risk of abusing access controls, which of the following is a good example of granular access control implementation?

Options :

A : System administrator access

B : Least privilege principle

C : Guest account access

D : Discretionary access control (DAC)

Answer: B

Question 2

An IoT device has many sensors on it and that sensor data is sent to the cloud. An IoT security practitioner should be sure to do which of the following in regard to that sensor data?

Options :

A : Collect as much data as possible so as to maximize potential value of the new IoT use-case.

B : Collect only the minimum amount of data required to perform all the business functions.

C : The amount or type of data collected isn't important if you have a properly secured IoT device.

D : The amount or type of data collected isn't important if you implement proper authorization controls.

Answer: B

Question 3

An IoT software developer wants the users of her software tools to know if they have been modified by someone other than her. Which of the following tools or techniques should she use?

Options :

A : Encryption

B : Obfuscation

C : Hashing

D : Fuzzing

Answer: C

Question 4

Which of the following techniques protects the confidentiality of the information stored in databases?

Options :

A : Hashing

B : Archiving

C : Monitoring

D : Encryption

Answer: D

Question 5

An IoT systems administrator wants to ensure that all data stored on remote IoT gateways is unreadable. Which of the following technologies is the administrator most likely to implement?

Options :

A : Secure Hypertext Transmission Protocol (HTTPS)

B : Internet Protocol Security (IPSec)

C : Triple Data Encryption Standard (3DES)

D : Message Digest 5 (MD5)

Answer: B

Free ITS-110 Mock Exam – Practice Online Confidently

Buying Options: