70,306 views
15 votes
15 votes
A red team initiated a DoS attack on the management interface of a switch using a known vulnerability. The monitoring solution then raised an alert, prompting a network engineer to log in to the switch to diagnose the issue. When the engineer logged in, the red team was able to capture the credentials and subsequently log in to the switch. Which of the following actions should the network team take to prevent this type of breach from reoccurring?

A. Encrypt all communications with TLS 13
B. Transition from SNMPv2c to SNMPv3 with AFS-256
C. Enable Secure Shell and disable Telnet
D. Use a password manager with complex passwords

User Mdrg
by
2.9k points

1 Answer

15 votes
15 votes

Answer:

Hence the answer is Option A Encrypt all communication with TLS 1 3.

Step-by-step explanation:

Transportation Layer Security (TLS 1 3)---->TLS stands for Transport Layer Security and is the successor to SSL (Secure Sockets Layer). TLS provides secure communication between web browsers and servers. The connection itself is secure because symmetric cryptography is used to encrypt the transmitted data.

SNMPv3 Security with 256 bit AES encryption is not available for all devices. The net-snmp agent does not support AES256 with SNMPv3.so it is not the correct option.

The best choice is an option a because TLS 1 3 because,

TLS version 1 3 helped in removing all the insecure features such as:

SHA-1

RC4

DES

3DES

AES-CBC

User Neurino
by
3.3k points