Which three Cisco security product features assist in preventing TCP-based man-in-themiddle attacks?

Which three Cisco security product features assist in preventing TCP-based man-in-themiddle attacks? (Choose three.)

A.
Cisco ASA TCP initial sequence number randomization?

B.
Cisco ASA TCP sliding-window conformance validation?

C.
Cisco IPS TCP stream reassembly?

D.
Cisco IOS TCP maximum segment size adjustment?