Which two OWASP communication layer vulnerabilities should be researched when securing the IoT device network services attack surface? (Choose two.)

Which two OWASP communication layer vulnerabilities should be researched when securing the IoT device network services attack surface? (Choose two.)

• vulnerable UDP services
• XBee
• information disclosure
• non-standard protocols
• Zigbee

Explanation: When the IoT device network services attack surface is being secured, the following vulnerabilities should be taken into account:

• Information disclosure
• Injection
• Denial of service
• Unencrypted services
• Poorly implemented encryption
• Test/development services
• Vulnerable UDP services
• Replay attack
• Lack of payload verification
• Lack of message integrity check

Exam with this question: IoT Security 1.1 Chapter 4 Quiz Answers