Which of the following security concerns is a threat to confidentiality?
Which of the following security concerns is a threat to confidentiality?
A threat to confidentiality involves the unauthorized access or exposure of information. Replay attacks are primarily concerned with integrity as they involve capturing data and retransmitting it to deceive a system. Denial of service and service outage relate to availability, not confidentiality. Dumpster diving, however, is an attempt to retrieve sensitive information by sifting through discarded materials, directly threatening the confidentiality of the information.
it should be dumpster diving, replay attack is a integrity concern.
I think it should be D for confidentiality because replay would be an issue with integrity.
Confidentiality means information revealed only to an authorised person, so dumspter diving is a confidentiality concern. Not integrity as that would be intercepting data e.g MitD, impersonation and REPLAY attacks. I have got this officially from the Comptia certmaster app.
I agree with the others, A is wrong, dumpster diving is a confidentiality concern, and that's why papers in the office should be destroyed before thrown away
Agree. The answer is Dumper Diving.
The answer is D.Dumpster diving The security concern that is a threat to confidentiality is "Dumpster diving."
A. Replay attack --> Integrity: It is not an attack on confidentiality because the attacker isn't learning any new information: the attackers have the same data than what they recorded in the first place. Although, it might lead to an unauthorized access but that is a different issue. It is not an attack on availability because the target system will still be functioning normally (again, unless the replay attack opens up the way for a different kind of exploit). It is, however, a breach of the system integrity because it allowed an unauthorized transaction. Further, the attacker might not know what the message is about if it's encrypted! https://security.stackexchange.com/a/104548 Correct answer is D.
Dumpster diving for sure.
D is the correct answer
Definitely D
Confidentiality means that information is only revealed to authorized people. This can be compromised in a number of ways: Snooping—this is any attempt to get access to information on a host or storage device (data at rest) that you are not authorized to view. An attacker might steal a password or find an unlocked workstation with a logged-on user account, or they might install some sort of spyware on the host. Eavesdropping/wiretapping—this is snooping on data or telephone conversations as they pass over the network. Snooping on traffic passing over a network is also often called sniffing. It can be relatively easy for an attacker to "tap" a wired network or intercept unencrypted wireless transmissions. Networks can use segmentation and encryption to protect data in-transit. Social engineering/dumpster diving—this means getting users to reveal information or finding printed information. We'll discuss this topic in more detail later in this unit.
I'd go with D
A have nothing to do with this
Replay attack
Attacks on confidentiality can include snooping, eavesdropping, wiretapping, social engineering, and dumpster diving.
A) Replay Attack
Should be D, replay is integrity