CISM Certified Information Security Manager – Question0475

A risk assessment study carried out by an organization noted that there is no segmentation of the local area network (LAN). Network segmentation would reduce the potential impact of which of the following?

A.
Denial of service (DoS) attacks
B. Traffic sniffing
C. Virus infections
D. IP address spoofing

Correct Answer: B

Explanation:

Explanation:
Network segmentation reduces the impact of traffic sniffing by limiting the amount of traffic that may be visible on any one network segment. Network segmentation would not mitigate the risk posed by denial of service (DoS) attacks, virus infections or IP address spoofing since each of these would be able to traverse network segments.