nerdexam
ExamsCSSLPQuestions#336
(ISC)2(ISC)2

CSSLP · Question #336

CSSLP Question #336: Real Exam Question with Answer & Explanation

The correct answer is A: Dumpster diving. Passive attacks involve observing or collecting information without altering system resources, with dumpster diving, eavesdropping, and shoulder surfing being common examples of such reconnaissance.

Secure Software Concepts

Question

Which of the following are examples of passive attacks? Each correct answer represents a complete solution. Choose all that apply.

Options

  • ADumpster diving
  • BPlacing a backdoor
  • CEavesdropping
  • DShoulder surfing

Explanation

Passive attacks involve observing or collecting information without altering system resources, with dumpster diving, eavesdropping, and shoulder surfing being common examples of such reconnaissance.

Common mistakes.

  • B. Placing a backdoor is an active attack because it involves intentionally modifying a system or software to create a hidden means of unauthorized access.

Concept tested. Passive attack types

Reference. https://csrc.nist.gov/glossary/term/passive_attack

Topics

#Passive attacks#Attack types#Information gathering#Reconnaissance

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CSSLP PracticeBrowse All CSSLP Questions