CISSP Exam - Question 306

I would think the answer as B. How can sniffing lead to integrity issues. I understand that it may lead to confidentially loss would not affect integrity.

Packet sniffing is a method of intercepting and analyzing network traffic to capture sensitive information such as login credentials, passwords, and other sensitive data. It can be used to compromise the integrity of data during transmission.

vote B sniffing is a passive attack.

the answer is D. Packet sniffing. Explanation: Packet sniffing is the act of capturing and examining packets as they travel over a network. When an attacker intercepts these packets, they can analyze the content, modify it, and then retransmit it, which compromises the integrity of the data during transmission. The attacker could potentially inject malicious code, alter the content of the data, or falsify the information being transmitted.

B. Session hijacking Session hijacking, also known as session takeover or session sidejacking, is an attack where an unauthorized user takes over an established user session. Once the attacker has control of the session, they can manipulate or alter the data being transmitted, thus compromising its integrity. The other options listed can compromise confidentiality or availability but do not directly compromise the integrity of data during transmission in the same way that session hijacking does.

Session hijacking, also known as session takeover or session sidejacking, is an attack where an unauthorized user takes over an established user session.

I would say B since taking over the session can change the integrity of the session and eavesdropping cannot. Are some of these "correct" answers incorrect?

None of the other options affect integrity.

D. Packet sniffing can be used to compromise the integrity of data during transmission.

I go for D. During a session hijacking attack, an attacker takes over a user's authenticated session by stealing their session token or other authentication credentials. This can allow the attacker to access sensitive data that is stored on the server or manipulate data that the user is working with during the session. However, it does not necessarily involve manipulating data during transmission. In contrast, packet sniffing involves intercepting and analyzing network traffic in order to capture and manipulate data as it is transmitted across the network. This can allow the attacker to modify or inject malicious data into the transmission, which compromises the integrity of the data.

Session hijacking: https://www.omnisecu.com/ccna-security/types-of-network-attacks.php Sniffing is an attack on confidentiality, while session hijacking is on integrity.

B. Session hijacking Packet sniffing primarily affects confidentiality by allowing attackers to eavesdrop on network traffic and potentially access sensitive information, session hijacking on the other hand impacts both confidentiality and integrity. Session hijacking involves an attacker taking control of a user's session, which can lead to unauthorized modifications of data and actions performed by the user, thus compromising the integrity of the data and user interactions.

Session Hijacking to hijack and compromise the data during transit. D is wrong because you just sniff and collect information there, not compromising the integrity.