Which of the following is the BEST explanation of why control diversity is important in a defense-in-depth architecture?
A. Social engineering is used to bypass technical controls, so having diversity in controls minimizes the risk of demographic exploitation
B. Hackers often impact the effectiveness of more than one control, so having multiple copies of individual controls provides redundancy
C. Technical exploits to defeat controls are released almost every day; control diversity provides overlapping protection.
D. Defense-in-depth relies on control diversity to provide multiple levels of network hierarchy that allow user domain segmentation
It’s “C” for sure.
C Need layered protection – a requirement of defense in depth. Control diversity is the use of different controls such as technical, administrative, and physical. Defense in depth refers to the security practice of implementing several layers of protection. Segmenting your network into different domains helps to ensure that relevant information is available only to those users that need it.
this seems like the correct answer D