Get Unlimited Contributor Access to the all ExamTopics Exams!
Take advantage of PDF Files for 1000+ Exams along with community discussions and pass IT Certification Exams Easily.
An organization is concerned about hackers potentially entering a facility and plugging in a remotely accessible Kali Linux box. Which of the following should be the first lines of defense against such an attack? (Choose two.)
Guys, I'm going to have an exam tomorrow, I'm very nervous because my professional future depends on this result, but I have faith in God that everything will work out.
Thank you all for your help here at ExamTopics.
Friends, I took the exam today and passed.
Score = 769
The questions here covered about 50% of the exam, so my tip is: Focus on the questions and come up with your own answers, the exam might surprise you.
There are like 400 questions on this page, you don't maybe know which of the questions here are on the exam? I studied all 300 questions and now they added another 100, it's messing me up.
We are asked for the first line of defense. Not the most versatile, or best combination. What if we had it all, which ones would be the first two. Well we have to stop the adversaries from entering the facility of course. Access control vestibules and guards do this. Then we have the more technical solutions such as Mac filtering or NAC, but as I noted, we need to pick the two which would be our first line of defense.
Those are the first lines of defense D. Physical Security and C. Information Security.
D. Access Control Vestibules represent a physical security measure. By physically preventing unauthorized individuals from entering a facility, you add a first line of defense against any intrusions, including someone trying to plug in an unauthorized device.
C. Network Access Control (NAC) is an information security measure. By controlling which devices can access the network based on predefined security postures, you add a digital line of defense to ensure that even if someone gets past the physical security, they can't just plug in a device and access the network.
Together, they form the first lines of defense on both the physical and digital fronts.
First line of defense: D & E
A,B, & C are second lines of defense
Bollards just prevent a vehicle from crashing in. Without them, if someone crashed in, they would be spotted immediately.
The correct answer for the FIRST line of attack SHOULD be D & E, however, if they mean technical controls, then it's B & C. MAC filtering is pretty lame since it can be compromised in seconds.
I choose DE because its asking for first line of defense before attacker can jack in a kali linux box, so i dont see why NAC would be necessary if a guard and vestibules are available options
C and D are both physical controls and it is quite possible to perform social engineering so that the guard might let the attacker in. If this is a possibility then there has to be a technical control too which is NAC. So I go with NAC and vestibule
The Question has Key giveaways, (concerned about hackers potentially entering a facility and plugging in a remotely accessible Kali Linux box) They are walking into the facility Physically. The intent is to plug in a Laptop, A cellphone, rasberry pi, or tablet with kali. Then connecting physically. So you would require physical deterrents. Such as guards and Access control Vestibules. Don't overthink it and keep it simple. D and E.
A second line of defence to add is (NAC) is a technique that restricts access to a network based on the identity, role, device, location, or other criteria of the users or devices. But the Initial applies as stopping the One way in and one way out physical entry. A concern for Insider threat would be to apply NAC. But that would be already in play before hand for the Network.
After pressing GPT and Brad:
The answer to the question "An organization is concerned about hackers potentially entering a facility and plugging in a remotely accessible Kali Linux box. Which of the following should be the first lines of defense against such an attack?" would be:
C. Network access control and D. Access control vestibules
Network Access Control (NAC) is essential because it can prevent unauthorized devices from connecting to the network. It ensures that devices meeting certain security postures are allowed to connect, while others are not.
Access Control Vestibules are physical barriers that prevent unauthorized individuals from entering a facility. If a hacker can't physically get into the building, they can't plug in their device.
While zero trust segmentation is a good security measure, it primarily helps once an intruder is already on the network. The question's emphasis is on preventing the hacker from physically plugging in a device, making physical security measures like access control vestibules more directly relevant.
Also from ChatGPT4:
For the scenario described, focusing on preventing unauthorized physical access through access control vestibules (D) and security personnel (E) would be the most direct and effective first lines of defense against the threat of an unauthorized individual physically introducing a malicious device into the facility.
ChatGPT is often wrong.
DE. Like others have said, the BEST defense is to keep people from getting into the building to begin with. Note the "and" in the question, not "or." The answer WOULD be CD if it said "or"
In the context of physically preventing unauthorized access and the immediate "first line of defense," the more suitable options would be:
D. Access control vestibules: These controlled entry points can prevent unauthorized individuals from directly entering the facility, and they provide security checks before granting access.
E. Guards: Security personnel can actively monitor entry points, verify identities, and prevent unauthorized devices from being plugged in.
While NAC is indeed an important security measure, it might not address the immediate concern of hackers physically gaining access to the facility and plugging in unauthorized devices. The initial defense against this kind of threat usually involves physical security measures like access control vestibules and security personnel.
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
[Removed]
Highly Voted 1 year, 2 months agoNeoSam999
1 year, 2 months agoShermszn
1 year, 2 months ago[Removed]
1 year, 2 months agorf18
1 year, 2 months ago[Removed]
1 year, 2 months agoRvR109
1 year, 2 months ago[Removed]
3 months, 2 weeks ago[Removed]
1 year, 2 months agoRanaer
Highly Voted 1 year, 2 months agoBlackSpider
6 months, 3 weeks agoBD69
Most Recent 1 month agoBD69
1 month, 4 weeks ago6809276
2 months agozecomeia_007
2 months, 2 weeks agoEikan
2 months, 3 weeks agocantbeme
3 months, 1 week agoEighthNotes
3 months, 1 week ago12f1a9a
3 months, 3 weeks agoBD69
1 month, 4 weeks agoComicbookman
5 months, 2 weeks agoComicbookman
5 months, 2 weeks agoJT4
6 months agoComPCertOn
5 months, 3 weeks agoMortG7
6 months, 1 week agoBlackSpider
6 months, 3 weeks agoBD69
1 month agoComPCertOn
5 months, 3 weeks agozits88
8 months, 1 week agoChillbuddy
8 months, 3 weeks agoApplebeesWaiter1122
9 months ago