312-50V13 · Question #588
312-50V13 Question #588: Real Exam Question with Answer & Explanation
The correct answer is D: Advise using a dedicated network for the smart home system, separate from the home's main Wi-. To prevent a compromised smart home device from affecting the rest of the system, network segmentation is the most effective strategy.
Question
As a cybersecurity analyst at TechSafe Inc., you are working on a project to improve the security of a smart home system. This IoT-enabled system controls various aspects of the home, from heating and lighting to security cameras and door locks. Your client wants to ensure that even if one device is compromised, the rest of the system remains secure. Which of the following strategies would be most effective for this purpose?
Options
- ARecommend using a strong password for the smart home system's main control panel.
- BSuggest implementing two-factor authentication for the smart home system's mobile app.
- CPropose frequent system resets to clear any potential malware.
- DAdvise using a dedicated network for the smart home system, separate from the home's main Wi-
Explanation
To prevent a compromised smart home device from affecting the rest of the system, network segmentation is the most effective strategy.
Common mistakes.
- A. Strong passwords are good security practice but do not prevent lateral movement if a device on the same network is compromised through another vulnerability.
- B. Two-factor authentication secures access to the mobile app but does not prevent a compromised IoT device itself from affecting other devices on the same flat network.
- C. Frequent system resets are reactive and impractical for preventing real-time compromise or limiting its scope during an active attack.
Concept tested. IoT network segmentation and isolation
Reference. https://learn.microsoft.com/en-us/azure/iot-fundamentals/iot-security-architecture
Topics
Community Discussion
No community discussion yet for this question.