ISC2 Systems Security Certified Practitioner (SSCP) Practice Question
A utility company operates 5,000 IoT-enabled smart meters across multiple remote sites. To remediate newly discovered vulnerabilities, the security team wants to push quarterly over-the-air (OTA) firmware updates. Which control will BEST ensure that only legitimate vendor code is installed and prevent malicious or corrupted images from disabling the meters during the update process?
Transfer firmware images to meters using SNMPv3 to encrypt the update traffic in transit.
Enforce cryptographic code-signing and on-device signature verification for every OTA firmware package.
Enable automatic rollback to factory defaults immediately after each firmware update completes.
Schedule OTA deployments only during off-peak energy-usage windows to limit customer impact.
The most effective safeguard against installing malicious or tampered firmware is to require every update to be cryptographically signed by the vendor and to have each device verify the digital signature before installation. Code-signing confirms the origin and integrity of the image; a failed verification stops the update, preventing execution of untrusted or corrupted code that could brick the device. While scheduling during off-peak hours reduces service impact, and encrypted transport (e.g., SNMPv3) protects data in transit, they do not validate the firmware itself. Automatic rollback helps recovery after failure but does not stop a malicious image from being applied in the first place.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is cryptographic code-signing?
Open an interactive chat with Bash
How does on-device signature verification work?
Open an interactive chat with Bash
What is SNMPv3 and how does it protect firmware updates?
Open an interactive chat with Bash
ISC2 Systems Security Certified Practitioner (SSCP)
Network and Communication Security
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99 $11.99
$11.99/mo
Billed monthly, Cancel any time.
$19.99 after promotion ends
3 Month Pass
$44.99 $26.99
$8.99/mo
One time purchase of $26.99, Does not auto-renew.
$44.99 after promotion ends
Save $18!
MOST POPULAR
Annual Pass
$119.99 $71.99
$5.99/mo
One time purchase of $71.99, Does not auto-renew.
$119.99 after promotion ends
Save $48!
BEST DEAL
Lifetime Pass
$189.99 $113.99
One time purchase, Good for life.
Save $76!
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .