Weekend Sale 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: sale65best

Free CertNexus ITS-110 Practice Exam with Questions & Answers | Set: 3

Questions 21

An IoT developer wants to ensure that their cloud management portal is protected against compromised end-user credentials. Which of the following technologies should the developer implement?

Options:
A.

An authentication policy that requires a password at initial logon, and a second password in order to access advanced features.

B.

An authentication policy which requires user passwords to include twelve characters, including uppercase, lowercase, and special characters.

C.

An authentication policy that requires a user to provide a strong password and on-demand token delivered via SMS.

D.

An authentication policy which requires two random tokens generated by a hardware device.

CertNexus ITS-110 Premium Access
Questions 22

A corporation's IoT security administrator has configured his IoT endpoints to send their data directly to a database using Secure Sockets Layer (SSL)/Transport Layer Security (TLS). Which entity provides the symmetric key used to secure the data in transit?

Options:
A.

The administrator's machine

B.

The database server

C.

The Key Distribution Center (KDC)

D.

The IoT endpoint

Questions 23

A network administrator is looking to implement best practices for the organization's password policy. Which of the following elements should the administrator include?

Options:
A.

Maximum length restriction

B.

Password history checks

C.

No use of special characters

D.

No password expiration

Questions 24

Which of the following technologies allows for encryption of networking communications without requiring any configuration on IoT endpoints?

Options:
A.

Transport Layer Security (TLS)

B.

Internet Protocol Security (IPSec)

C.

Virtual private network (VPN)

D.

Elliptic curve cryptography (ECC)

Questions 25

It is a new employee's first day on the job. When trying to access secured systems, he incorrectly enters his credentials multiple times. Which resulting action should take place?

Options:
A.

His account is deleted.

B.

He receives a new password.

C.

His account is locked.

D.

He notifies Human Resources.

Questions 26

Which of the following methods is an IoT portal administrator most likely to use in order to mitigate Distributed Denial of Service (DDoS) attacks?

Options:
A.

Implement Domain Name System Security Extensions (DNSSEC) on all Internet-facing name servers

B.

Disable Network Address Translation Traversal (NAT-T) at the border firewall

C.

Implement traffic scrubbers on the upstream Internet Service Provider (ISP) connection

D.

Require Internet Protocol Security (IPSec) for all inbound portal connections

Questions 27

An IoT integrator wants to deploy an IoT gateway at the Edge and have it connect to the cloud via API. In order to minimize risk, which of the following actions should the integrator take before integration?

Options:
A.

Write down the default login and password

B.

Remove all logins and passwords that may exist

C.

Create new credentials using a strong password

D.

Reset the IoT gateway to factory defaults

Questions 28

An IoT security administrator is concerned about an external attacker using the internal device management local area network (LAN) to compromise his IoT devices. Which of the following countermeasures should the security administrator implement? (Choose three.)

Options:
A.

Require the use of Password Authentication Protocol (PAP)

B.

Create a separate management virtual LAN (VLAN)

C.

Ensure that all IoT management servers are running antivirus software

D.

Implement 802.1X for authentication

E.

Ensure that the Time To Live (TTL) flag for outgoing packets is set to 1

F.

Only allow outbound traffic from the management LAN

G.

Ensure that all administrators access the management server at specific times

Questions 29

A cloud developer for an IoT service is storing billing information. Which of the following should be considered a common vulnerability in regard to this data that could be used to compromise privacy?

Options:
A.

Enabled notifications as required by law

B.

Lack of data retention policies

C.

Authorized access to personal information

D.

Secured data in motion and at rest

Questions 30

During a brute force test on his users’ passwords, the security administrator found several passwords that were cracked quickly. Which of the following passwords would have taken the longest to crack?

Options:
A.

GUESSmyPASSWORD

B.

Gu3$$MyP@s$w0Rd

C.

123my456password789

D.

**myPASSword**

Exam Code: ITS-110
Certification Provider: CertNexus
Exam Name: Certified Internet of Things Security Practitioner (CIoTSP)
Last Update: Jul 19, 2025
Questions: 100

How to Pass ITS-110 Exams

PDF + Testing Engine
$164.99
$57.75
Add to Cart
Testing Engine
$124.99
$43.75
Add to Cart
PDF (Q&A)
$104.99
$36.75
Add to Cart

CertNexus Related Exams

ITP-110 - Certified Internet of Things Practitioner
CVP1-111 - Logical Operations Certified Virtualilzation Professional - VMware vSphere 6.5 Level 1
CSC-110 - Cyber Secure Coder
DSP-110 - Certified Data Science Practitioner
CFR-410 - CyberSec First Responder (CFR) Exam
CET-110 - Certified Ethical Emerging Technologist
AIP-110 - Certified Artificial Intelligence Practitioner
AIP-210 - CertNexus Certified Artificial Intelligence Practitioner (CAIP)
CVP2-111 - Logical Operations Certified Virtualilzation Professional - VMware vSphere 6.5 Level 2
CSC-210 - Cyber Secure Coder
CertNexus Free Access
Get CertNexus Full Access

CertNexus Free Exams
CertNexus Free Exams
Unlock free CertNexus exam resources and practice tests at Examstrack. Boost your CertNexus exam readiness with top-notch materials.