Certified Information Security Manager (CISM) — Question 516

The BEST way to avoid session hijacking is to use:

Answer options

• A. strong password controls.
• B. a firewall.
• C. a reverse lookup.
• D. a secure protocol.

Correct answer: D

Explanation

Using a secure protocol, such as HTTPS, encrypts the data transmitted between the user and the server, which significantly reduces the risk of session hijacking. Strong password controls, a firewall, and reverse lookups, while useful for other security measures, do not directly address the vulnerabilities that lead to session hijacking.