312-50V13 Question #608: Real Exam Question with Answer & Explanation

Question

As a security consultant, you are advising a startup that is developing an IoT device for home security. The device communicates with a mobile app, allowing homeowners to monitor their homes in real time. The CEO is concerned about potential Man-in-the-Middle (MitM) attacks that could allow an attacker to intercept and manipulate the device's communication. Which of the following solutions would best protect against such attacks?

Options

• AUse CAPTCHA on the mobile app's login screen.
• BImplement SSL/TLS encryption for data transmission between the IoT device and the mobile app.
• CLimit the range of the IoT device's wireless signals.
• DFrequently change the IoT device's IP address.

Explanation

To best protect an IoT device from Man-in-the-Middle (MitM) attacks during communication with a mobile app, SSL/TLS encryption for data transmission should be implemented.

Common mistakes.

• A. Using CAPTCHA protects against automated login attempts and bots, but it does not secure the communication channel itself against interception and manipulation by a MitM attacker.
• C. Limiting the range of wireless signals primarily addresses physical security concerns like wardriving or unauthorized access from afar, but it does not prevent a MitM attack if the attacker is positioned within the operational range.
• D. Frequently changing an IoT device's IP address offers no protection against MitM attacks, as these attacks target the communication channel and cryptographic protocols, not the specific IP address of the device.

Concept tested. Man-in-the-Middle (MitM) attack prevention (SSL/TLS)

Reference. https://learn.microsoft.com/en-us/azure/iot-hub/iot-hub-security-architecture

No community discussion yet for this question.