A company suspects that an attacker has been attempting to gather sensitive information by intercepting traffic on its wired network. Which of the following measures is MOST effective in preventing the attacker from gaining useful information?
Changing the default passwords on network devices.
Disabling all unused services on the network hosts.
Implementing a firewall between the wired network and external systems.
Encrypting the data in transit on the wired network significantly enhances security because intercepted packets are unreadable without the decryption key. Changing default passwords is good hygiene but does not stop packet sniffing. A perimeter firewall controls ingress and egress traffic but does not protect packets already flowing on the internal segment. Disabling unused services reduces the attack surface yet still leaves any permitted traffic vulnerable to inspection if it is sent in cleartext.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
How does encryption work to secure data in transit?
Open an interactive chat with Bash
What are some examples of encryption protocols used for protecting network traffic?
Open an interactive chat with Bash
What measures can complement encryption to enhance network security?