A company has made it a spending priority to implement security architectures that will be resilient during an attack. Recent incidents have involved attackers leveraging latent vulnerabilities in cryptographic implementations and VPN concentrators to be able to compromise sensitive information. Patches have been slowly released for these emergent vulnerabilities, leaving weeks to months of exposed and vulnerable attack surface. Which of the following approaches would be BEST to increase enterprise resilience during similar future attacks?

A. Implement appliances and software from diverse manufacturers

B. Segment remote VPN users logically from the production LAN

C. Maximize open source software to benefit from swifter patch releases

D. Upgrade the cryptographic ciphers used on the VPN concentrators