What are two OWASP communication layer vulnerabilities commonly found when securing the IoT device network services attack surface? (Choose two.)
- poorly implemented encryption
- LAN traffic
- lack of payload verification
- nonstandard protocols
- protocol fuzzing
Explanation: When the IoT device network services attack surface is being secured, the following vulnerabilities should be taken into account:
Information disclosure
Injection
Denial of service
Unencrypted services
Poorly implemented encryption
Test/development services
Vulnerable UDP services
Replay attack
Lack of payload verification
Lack of message integrity check
Exam with this question: IoT Sec 1.1 Fundamentals: IoT Security Final Exam Answers
Please login or Register to submit your answer