Ace Your Exams with Our Notes and Mock Tests!

EC-Council: Computer Hacking Forensic Investigator(CHFI-V10)
Module 12 : Cloud Forensics
Questions available : 15		You are not logged in. Please Login for track your learning progress

Q. No: 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 |
		Go to Question No.

Question No 0

---

If you want to share the link of this question, please click here to "Copy Question Link" and share that generated link. Link from URL may change in future.

 

---

Bookmark this Question		QID: 423
In which attack does an attacker place a virtual machine (VM) in proximity to a target cloud server, and take advantage of shared physical resources (processor cache) to extract cryptographic keys/plain text secrets to steal the victim‘s credentials?
A:    Spoofing Attack
B:    Cloud Hijacking Attack
C:    Wrapping Attack
D:    Side Channel Attacks
Explanation: Wrapping Attack: In a wrapping attack, the adversary does its deception during the translation of the SOAP message in the transport layer service (TLS) layer. The attacker duplicates the body of the message and sends it to the server as a legitimate user Side Channel Attacks or Cross-guest VM Breaches : Attackers compromise a cloud environment by placing VMs in close proximity to the target cloud server. They run these VMs on the same physical host as that of victim VMs and take advantage of the shared physical resources (processor cache) to launch side-channel attacks (timing attack to extract cryptographic keys/plain text secrets to steal user credentials). Then, they use the stolen credentials to impersonate the victim. A DNS hijacking or spoofing attack is performed with the help of a rogue DNS server that enables attackers to change target domain names of websites or search engines into desired IP addresses, which redirect users to their malicious websites