Certified Information Systems Security Professional (CISSP) — Question 448

Which of the following attacks, if successful, could give an intruder complete control of a software-defined networking (SDN) architecture?

Answer options

• A. A brute force password attack on the Secure Shell (SSH) port of the controller
• B. Sending control messages to open a flow that does not pass a firewall from a compromised host within the network
• C. Remote Authentication Dial-In User Service (RADIUS) token replay attack
• D. Sniffing the traffic of a compromised host inside the network

Correct answer: A

Explanation

A brute force password attack on the Secure Shell (SSH) port of the controller can lead to complete control over the SDN architecture, as gaining access to the controller is critical for managing the network. The other options, while potentially harmful, do not provide the same level of direct control over the SDN environment as compromising the controller does.