312-50V13 · Question #588
As a cybersecurity analyst at TechSafe Inc., you are working on a project to improve the security of a smart home system. This IoT-enabled system controls various aspects of the home, from heating and
The correct answer is D. Advise using a dedicated network for the smart home system, separate from the home's main Wi-. To prevent a compromised smart home device from affecting the rest of the system, network segmentation is the most effective strategy.
Question
Options
- ARecommend using a strong password for the smart home system's main control panel.
- BSuggest implementing two-factor authentication for the smart home system's mobile app.
- CPropose frequent system resets to clear any potential malware.
- DAdvise using a dedicated network for the smart home system, separate from the home's main Wi-
How the community answered
(38 responses)- A13% (5)
- B5% (2)
- C5% (2)
- D76% (29)
Why each option
To prevent a compromised smart home device from affecting the rest of the system, network segmentation is the most effective strategy.
Strong passwords are good security practice but do not prevent lateral movement if a device on the same network is compromised through another vulnerability.
Two-factor authentication secures access to the mobile app but does not prevent a compromised IoT device itself from affecting other devices on the same flat network.
Frequent system resets are reactive and impractical for preventing real-time compromise or limiting its scope during an active attack.
Implementing a dedicated, separate network for IoT devices creates network segmentation, isolating potential compromises within the IoT segment and preventing them from spreading to the main network or other sensitive systems. This limits the blast radius of an attack, enhancing the overall system security.
Concept tested: IoT network segmentation and isolation
Source: https://learn.microsoft.com/en-us/azure/iot-fundamentals/iot-security-architecture
Topics
Community Discussion
No community discussion yet for this question.