nerdexam
GIAC

GCIH · Question #590

What is the first line of defense against BGP hijacking?

The correct answer is A. Know the baseline of normal traceroute information. Knowing what normal traffic looks like is the first line of defense. Training users to identify potentially hijacked sessions is predicated on being able to show users what normal traffic looks like. Injecting routes is what you are defending against. Monthly routing table report

Incident Response & Cyber Kill Chain

Question

What is the first line of defense against BGP hijacking?

Options

  • AKnow the baseline of normal traceroute information
  • BInject routes to honeynets
  • CTrain users to identify potentially hijacked sessions
  • DAsk your ISP(s) for monthly routing table reports

How the community answered

(28 responses)
  • A
    75% (21)
  • B
    4% (1)
  • C
    11% (3)
  • D
    11% (3)

Explanation

Knowing what normal traffic looks like is the first line of defense. Training users to identify potentially hijacked sessions is predicated on being able to show users what normal traffic looks like. Injecting routes is what you are defending against. Monthly routing table reports from your ISP may help to establish normal baseline but it is the first thing that would be done.

Topics

#BGP hijacking#traceroute baseline#routing security#network monitoring

Community Discussion

No community discussion yet for this question.

Full GCIH Practice