Exam SY0-501 topic 1 question 774 discussion

Had this question on my exam. October 5, 2020 - I went with A, its the only option that was relevant to a security consideration. Horrible question btw.

When they are designed for residential use, IoT devices can suffer from weak defaults. They may be configured to "work" with a minimum of configuration effort. There may be recommended steps to secure the device that the customer never takes. So, A is the answer

I don't see how security could play into anything else but A.

Why not B, less processing means less secure implementation of security since good security implementation take more processing power.

A is correct. an example is a camera you use at home, it has an admin account already set up , and you rarely work with it.

Its C. IoT devices are physically segmented from each other. Since, Iot devices are physically segmented from each other, it is difficult to provide physical security. It is as important as servers security. One should not compromise regarding physical security.

A is probably correct: https://tech.newstatesman.com/security/uk-banning-default-passwords But: The security requirements for key usage will also determine the key's length. Longer keys are more secure, and critical processes (such as identifying the root CA) should use long keys (4096-bit). Data processing servers are likely to use 2048-bit keys, rather than 1024-bit keys, especially if there is any regulatory compliance involved. Conversely, a certificate issued to a smartphone or tablet or Internet of Things (IoT) device might need to use a shorter key to reduce the amount of CPU processing and power required for each operation using the key. RSA (Rivest Shamir Adleman) and ECC (Elliptic Curve Cryptography) algorithms have been compared for identifying the most lightweight, secure, efficient implementation in IoT. Based on the findings, the ECC algorithm outperforms RSA in a constrained environment in terms of memory requirements, energy consumption, key sizes, signature generation time, key generation and execution time, and decryption time while RSA performs better in verifying the signature and encrypting.

A is wrong, i would say D instead.