WGUSecure Software Design (KEO1) - Secure-Software-Design무료 덤프문제 풀어보기
A recent vulnerability scan uncovered an XML external entity (XXE) Haw that could allow attackers to return the contents of a system file by including a specific payload in an XML request.
How should the organization remediate this vulnerability?
How should the organization remediate this vulnerability?
정답: C
설명: (Fast2test 회원만 볼 수 있음)
Which secure coding practice uses role-based authentication where department-specific credentials will authorize department-specific functionality?
정답: B
Which architecture deliverable identifies the organization's tolerance to security issues and how the organization plans to react if a security issue occurs?
정답: A
The software security team is using an automation tool that generates random data to input into every field in the new product and track results.
Which security testing technique is being used?
Which security testing technique is being used?
정답: A
A new product does not display personally identifiable information, will not let private documents be printed, and requires elevation of privilege to retrieve archive documents. Which secure coding practice is this describing?
정답: B
설명: (Fast2test 회원만 볼 수 있음)
Which type of manual code review technique is being used when the reviewer starts at an input control and traces its value through the application to each of the value's outputs?
정답: C
설명: (Fast2test 회원만 볼 수 있음)
Which threat modeling step assigns a score to discovered threats?
정답: B
Which mitigation technique is used to fight against an identity spoofing threat?
정답: B
설명: (Fast2test 회원만 볼 수 있음)