Online Access Free Secure-Software-Design Practice Test

Security testers have completed testing and are documenting the results of vulnerability scans and penetration analysis They are also creating documentation lo share with the organization's largest customers.
Which deliverable is being prepared?

• A.Security testing reports
• B.Remediation report
• C.Customer engagement framework
• D.Open-source licensing review report

What is a best practice of secure coding?

• A.Microservices
• B.Planning
• C.Session management
• D.User acceptance testing

Which concept is demonstrated when every module in a particular abstraction layer of a computing environment can only access the information and resources that are necessary for its legitimate purpose?

• A.Principle of Least Privilege
• B.Elevation of Privilege
• C.Privacy
• D.Confidentiality

Which type of manual code review technique is being used when the reviewer starts at an input control and traces its value through the application to each of the value's outputs?

• A.Control flow analysis
• B.Threat analysis
• C.Risk analysis
• D.Data flow analysis

The software security team is performing security testing on a new software product using a testing tool that scans the running application for known exploit signatures.
Which security testing technique is being used?

• A.Properly-based testing
• B.Penetration testing
• C.Source-code analysis
• D.Automated vulnerability scanning