CISSP – Information Systems Security Architecture Professional (ISSAP) — Question 31

Which of the following types of attacks cannot be prevented by technical measures only?

Answer options

• A. Social engineering
• B. Brute force
• C. Smurf DoS
• D. Ping flood attack

Correct answer: A

Explanation

The correct answer is A, Social engineering, as it relies on manipulating human behavior rather than exploiting technical vulnerabilities. The other options, such as Brute force, Smurf DoS, and Ping flood attacks, can be addressed with various technical defenses, including rate limiting, firewalls, and intrusion detection systems.