Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.

Exam CS0-002 topic 1 question 1 discussion

Actual exam question from CompTIA's CS0-002
Question #: 1
Topic #: 1
[All CS0-002 Questions]

An analyst is performing penetration testing and vulnerability assessment activities against a new vehicle automation platform.
Which of the following is MOST likely an attack vector that is being utilized as part of the testing and assessment?

  • A. FaaS
  • B. RTOS
  • C. SoC
  • D. GPS
  • E. CAN bus
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
IoT devices also often run real-time operating systems (RTOS). These are either special purpose operating systems or variants of standard operating systems designed to process data rapidly as it arrives from sensors or other IoT components.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
examcol
Highly Voted 1 year, 6 months ago
Inside modern cars, in vehicle equipment (e.g., parking sensors, airbag, active safety system, anti-braking system) and systems (e.g., infotainment) communicate with each other through what is called a Controller Area Network (CAN). I think that correct answer is E. CAN bus. It is the MOST likely the attack vector that is being utilized as part of the testing and assessment. References: https://documents.trendmicro.com/assets/A-Vulnerability-in-Modern-Automotive-Standards-and-How-We-Exploited-It.pdf https://dellfer.com/how-to-hack-a-car/ https://wow.intsights.com/rs/071-ZWD-900/images/AutomotiveCyberThreatLandscape2019.pdf
upvoted 18 times
...
nickname98163
Highly Voted 1 year, 1 month ago
You guys have to read the question carefully, "against a new vehicle automation platform" not the vehicle, nor the vehicle's "internals". Hence, B - (ROTS) is the answer, as the automation-plant/platform will likely utilize IoT for it's automation and inside the IoT the OSes run in real-time. Also, SoC - System-on-a-Chip. That is all.
upvoted 9 times
...
miabe
Most Recent 3 weeks, 5 days ago
Selected Answer: E
looks good to me
upvoted 1 times
...
SteveDill
1 month, 2 weeks ago
The answer is CAN Bus.......CompTIA Official Study Guide book Page 332
upvoted 1 times
...
iyke2k4
2 months ago
The answer is CAN bus.
upvoted 1 times
...
lionleo
2 months, 2 weeks ago
The answer is B why? because the key work here is automation platform: Role of RTOS in Autonomous Vehicles What is RTOS? RTOS stands for Real-Time Operating System. It is used in real-time applications to achieve real-time output without any buffering delay. In the OS, there is a module called the scheduler, which schedules different tasks and determines
upvoted 1 times
...
king777
2 months, 3 weeks ago
Selected Answer: E
I think the E is the correct option according to syllabus.
upvoted 1 times
...
InfoSecGuy93
4 months, 1 week ago
Selected Answer: E
It has to be CAN bus. Go through Jason Dion for more info
upvoted 2 times
...
Xyz_40
5 months, 3 weeks ago
For automation...we talk about RTOS.
upvoted 1 times
...
RogerSmith
5 months, 3 weeks ago
The answer is E.CAN BUS: Vehicular Vulnerabilities ● Vehicles connect numerous subsystems over a controller area network (CAN) ● Controller Area Network (CAN) o A digital serial data communications network used within vehicles o The primary external interface is the Onboard Diagnostics (OBD-II) module o No concept of source addressing or message authentication in a CAN bus ▪ Attach the exploit to OBD-II ▪ Exploit over onboard cellular ▪ Exploit over onboard Wi-Fi
upvoted 1 times
...
usoldier
7 months, 2 weeks ago
A study conducted by IOActive last year showed that when it comes to cars, the CAN bus is the fourth most common attack vector. https://www.securityweek.com/ics-cert-warns-can-bus-vulnerability
upvoted 2 times
...
vorozco
8 months, 2 weeks ago
E. CAN bus "The CAN bus vehicle standard defines the ways in which independent components of vehicles control systems, usually in the form of electronic control units (ECUs), communicate with one another without having a central controller... Signals that pass along the CAN but are also not protected by encryption by default, so the chance of man-in-the-middle attack are far greater than an attack on other systems with protection (Pg133)." This section then goes into a real world example of a vehicle takeover through the car's CAN bus. Although this doesn't outright answer the question, it leads me to believe that the vehicle automation platform in question is referring to the ECUs communicating to each other. The section on RTOs mostly highlights its use for "scheduling tasks to avoid any possibility for delays in processing or delivery... which are usually found in vehicle electronics (Pg131)." I would not think vehicle automation platform is referring to vehicle electronics. -All-in-One CYSA+ Exam CS0-002, Second Edition
upvoted 3 times
...
Abakoule
9 months, 3 weeks ago
B - (ROTS) is the answer, as the automation-plant/platform will likely utilize IoT for it's automation and inside the IoT the OSes run in real-time.
upvoted 1 times
...
VinciTheTechnic1an
10 months, 1 week ago
CAN is the answer based from Comptia.
upvoted 1 times
...
abdikadirali
10 months, 2 weeks ago
After I did some research, I believe the right answer is CAN bus
upvoted 2 times
...
patinho777
11 months, 1 week ago
Guys, this is a question from the CompTIA CertMaster Practice for CySA+ CS0-002 A hacker can manipulate which of the following after taking over a controller area network (CAN) serial communications bus? Select all that apply CORRECT ANSWER: - Automobiles - Unmanned aerial vehicles So I definitely think that the answer is E, CAN bus.
upvoted 2 times
vorozco
8 months, 2 weeks ago
Did you get that from memory?
upvoted 1 times
...
...
Alizadeh
11 months, 1 week ago
To validate local system hardening requirements which of the following types of vulnerability scans would work BEST to verify the scanned device meets security policies? A. SCAR B. SAST C. DAST D. DACS Answer?
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...