Which practice best helps prevent spoofing, tampering, and outages in C2 networks?

• A. Encryption, authentication, redundancy, and robust network protocols to prevent spoofing, tampering, and outages.
• B. Use encryption only, with no authentication or redundancy.
• C. Rely on simple password protection without encryption.
• D. Disable all network protections to speed up data flow.

Answer: (D)

The idea here is defense-in-depth for command-and-control networks: use a combination of authentication, encryption, integrity protection, and redundancy to keep spoofing, tampering, and outages at bay.

Spoofing stops when there is strong authentication so you can verify who is sending commands, and when integrity checks are in place to ensure messages actually come from trusted sources. Tampering is prevented by encryption and integrity verification (MACs or digital signatures) so data cannot be read or altered in transit without detection. Outages are mitigated by redundancy and robust network protocols that provide alternate paths, failover, and reliable delivery even if part of the network experiences issues. Together, these measures create a resilient, trustworthy system.

Encryption alone won’t stop impersonation or guarantee availability, and simple password protection offers little real security without encryption and integrity checks. Disabling protections defeats the purpose entirely.