Which SMB feature is used to prevent man-in-the-middle attacks?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $9.99Unlock all

Prepare for the Windows Server Final 313 Test. Engage with interactive flashcards and multiple-choice questions. Detailed explanations ensure a thorough understanding. Be exam-ready!

Multiple Choice

Which SMB feature is used to prevent man-in-the-middle attacks?

Explanation:
The key idea is protecting the SMB authentication handshake from tampering by a man-in-the-middle. Pre-Authentication Integrity adds a cryptographic check on the data used before credentials are exchanged, so if someone in the middle tries to modify the negotiation or impersonate the server, the mismatch is detected and the connection is blocked before authentication completes. This directly stops MITM attempts during the login phase. SMB Encryption focuses on keeping the actual data protected once a session is established, not on preventing tampering during the pre-authentication handshake. SMB Multichannel enhances security and performance across multiple channels (and can apply signing/encryption), but it isn’t specifically about preventing MITM during the pre-authentication step. Cluster Dialect Fencing deals with ensuring the cluster nodes use approved dialects and isn’t about MITM protection during SMB authentication. So the feature that best prevents man-in-the-middle attacks during SMB authentication is Pre-Authentication Integrity.

The key idea is protecting the SMB authentication handshake from tampering by a man-in-the-middle. Pre-Authentication Integrity adds a cryptographic check on the data used before credentials are exchanged, so if someone in the middle tries to modify the negotiation or impersonate the server, the mismatch is detected and the connection is blocked before authentication completes. This directly stops MITM attempts during the login phase.

SMB Encryption focuses on keeping the actual data protected once a session is established, not on preventing tampering during the pre-authentication handshake. SMB Multichannel enhances security and performance across multiple channels (and can apply signing/encryption), but it isn’t specifically about preventing MITM during the pre-authentication step. Cluster Dialect Fencing deals with ensuring the cluster nodes use approved dialects and isn’t about MITM protection during SMB authentication.

So the feature that best prevents man-in-the-middle attacks during SMB authentication is Pre-Authentication Integrity.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy