CISSP · Question #1284
Which of the following attack types can be used to compromise the integrity of data during transmission?
The correct answer is B. Packet sniffing. Packet sniffing captures data packets during transmission, which can be leveraged to compromise data integrity by intercepting and potentially modifying data in transit.
Question
Which of the following attack types can be used to compromise the integrity of data during transmission?
Options
- AKeylogging
- BPacket sniffing
- CSynchronization flooding
- DSession hijacking
How the community answered
(21 responses)- B95% (20)
- C5% (1)
Why each option
Packet sniffing captures data packets during transmission, which can be leveraged to compromise data integrity by intercepting and potentially modifying data in transit.
Keylogging captures keystrokes at the endpoint device before data is transmitted, so it compromises confidentiality at the source rather than data integrity during transmission.
Packet sniffing involves intercepting and capturing data packets as they traverse a network, directly targeting data during transmission. While packet sniffing is primarily associated with confidentiality attacks, when combined with techniques like man-in-the-middle positioning, captured packets can be modified and reinjected, compromising the integrity of data in transit. Among the given options, it most directly operates on data during transmission, making it the best answer for compromising integrity of transmitted data.
Synchronization (SYN) flooding is a denial-of-service attack that overwhelms a target with TCP SYN requests, affecting availability rather than the integrity of transmitted data.
Session hijacking takes over an established session between two parties, which primarily compromises authentication and authorization rather than directly altering data integrity during transmission.
Concept tested: Attack types targeting data integrity during network transmission
Source: https://learn.microsoft.com/en-us/security/engineering/threat-modeling
Topics
Community Discussion
No community discussion yet for this question.