CISSP – Information Systems Security Architecture Professional (ISSAP) — Question 9
Which of the following are types of access control attacks? Each correct answer represents a complete solution. Choose all that apply.
Answer options
- A. Dictionary attack
- B. Mail bombing
- C. Spoofing
- D. Brute force attack
Correct answer: A, C, D
Explanation
A Dictionary attack, Spoofing, and Brute force attack are all recognized methods of attempting to bypass access controls. In contrast, Mail bombing is not considered an access control attack but rather a form of denial of service aimed at overwhelming an email server.