Certified IoT Security Practitioner Changed ITS-110 Questions

Page: 4 / 7

Question 16

You work for a business-to-consumer (B2C) IoT device company. Your organization wishes to publish an annual report showing statistics related to the volume and variety of sensor data it collects. Which of the following should your organization do prior to using this information?

Options:

Confirm the devices they've sold are turned on

Ensure all sensors are running the latest software

Require customers to sign a subscription license

Remove any customer-specific data

Question 17

A site administrator is not enforcing strong passwords or password complexity. To which of the following types of attacks is this system probably MOST vulnerable?

Options:

Key logger attack

Dictionary attack

Collision attack

Phishing attack

Question 18

An IoT developer has endpoints that are shipped to users in the field. Which of the following best practices must be implemented for using default passwords after delivery?

Options:

Implement two-factor authentication (2FA)

Force a password change upon initial login

Apply granular role-based access

Protect against account enumeration

Question 19

A manufacturer wants to ensure that approved software is delivered securely and can be verified prior to installation on its IoT devices. Which of the following technologies allows the manufacturer to meet this requirement?