Tips for Securing WiFi-Enabled IoT Devices | Exam 220-1101

Addressing Customer Concerns about IoT Device Hacking

Prev Question Next Question

Question

A technician is setting up a WiFi-enabled thermostat for a customer, but the customer is concerned about IoT devices getting hacked.

Which of the following BEST address the customer's concerns? (Choose two.)

Answers

A. Use the latest encryption standard on the wireless network and set a strong password.

B. Enable two-factor authentication for the IoT device`s cloud account, if it is available.

C. Separate the IoT thermostat by segregating it in a DMZ network.

D. Disable wireless access on the thermostat to make it unshakable.

E. Upgrade the customer`s router to the latest version to improve network security.

F. Upgrade the customer`s wireless network encryption to WP.

Show Answer

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D. E. F.

AC.

The two best options for addressing the customer's concerns about IoT device hacking are:

A. Use the latest encryption standard on the wireless network and set a strong password. B. Enable two-factor authentication for the IoT device's cloud account, if it is available.

Explanation:

A. Use the latest encryption standard on the wireless network and set a strong password: Using the latest encryption standard on the wireless network ensures that data transmitted between the thermostat and the router is secure. WPA3 is the current encryption standard that provides better security than its predecessor, WPA2. Additionally, setting a strong password ensures that unauthorized parties cannot access the network or thermostat, even if they discover the password.

B. Enable two-factor authentication for the IoT device's cloud account, if it is available: Two-factor authentication adds an extra layer of security to the account by requiring the user to provide a password and a secondary authentication method such as a code sent via SMS, email, or through an authentication app. This significantly reduces the risk of unauthorized access to the IoT device's cloud account, which could lead to device compromise.

C. Separate the IoT thermostat by segregating it in a DMZ network: A DMZ network is a separate network segment that is isolated from the main network, but still has access to the internet. Placing the IoT thermostat in a DMZ network helps isolate it from other devices on the network, reducing the risk of a compromised device affecting the rest of the network.

D. Disable wireless access on the thermostat to make it unshakable: Disabling wireless access on the thermostat may prevent it from being hacked, but it also limits its functionality and convenience.

E. Upgrade the customer's router to the latest version to improve network security: While upgrading the router to the latest version can improve network security, it does not specifically address the security concerns related to IoT devices.

F. Upgrade the customer's wireless network encryption to WPA: WPA is an older encryption standard that has been deprecated in favor of WPA2 and WPA3. Upgrading to WPA may not provide the same level of security as using the latest encryption standard.

In summary, options A and B are the best ways to address the customer's concerns about IoT device hacking. Using the latest encryption standard on the wireless network and setting a strong password ensures that the thermostat's communication with the router is secure, while two-factor authentication adds an extra layer of security to the IoT device's cloud account.

Prev Question Next Question