Which of the following incorrectly describes IP spoofing and session hijacking?

A.
Address spoofing helps an attacker to hijack sessions between two users without being noticed.

B.
IP spoofing makes it harder to track down an attacker.

C.
Session hijacking can be prevented with mutual authentication.

D.
IP spoofing is used to hijack SSL and IPSec secure communications.

Explanation:
D: Secure Sockets Layer (SSL) and IPSec can protect the integrity, authenticity, and confidentiality of network traffic. Even if an attacker spoofed an IP address,
he would not be able to successfully manipulate or read SSL- or IPSec-encrypted traffic, as he would not have access to the keys and other cryptographic material
required.
+ A is incorrect because the statement is true. Address spoofing helps an attacker to hijack sessions between two users without being noticed. If an attacker
wanted to take over a session between two computers, she would need to put herself in the middle of their conversation without being detected. Tools like
Juggernaut and the HUNT Project enable the attacker to spy on the TCP connection and then hijack it.
+ B is incorrect because the statement is true. Spoofing is the presentation of false information, usually within packets, to trick other systems and hide the origin of
the message. This is usually done by hackers so that their identity cannot be successfully uncovered.
+ C is incorrect because the statement is true. If session hijacking is a concern on a network, the administrator can implement a protocol, such as IPSec or
Kerberos, that requires mutual authentication between users or systems.