Certified Cloud Security Professional (CCSP) — Question 296

What type of security threat is DNSSEC designed to prevent?

Answer options

• A. Account hijacking
• B. Snooping
• C. Spoofing
• D. Injection

Correct answer: C

Explanation

The correct answer is C, as DNSSEC is specifically designed to protect against spoofing attacks, where an attacker might supply false DNS information. Options A (Account hijacking), B (Snooping), and D (Injection) refer to different types of security threats that DNSSEC does not directly address.