Question 1

Access control is:

Options :

A : All answers are correct

B : Not the same as authorization, but the two go hand in hand

C : Another word for authorization

Answer: B

Question 2

With imperative programming, the security implementation is:

Options :

A : Well-defined and commonly recognized

B : Embedded in a container in which rules are configured as part of deployment

C : Embedded into the code itself

D : Specified in a set of well-defined actions

Answer: C

Question 3

The key to ensuring that every module in the system is operating correctly is what? (Choose all that apply.)

Options :

A : Ensuring proper interface design

B : Staying on top of changes

C : Designer creativity

D : Ensuring proper valid inputs

Answer: A,D

Question 4

Threat modeling is a process used to identify and document what? (Choose all that apply.)

Options :

A : The relationships in the system

B : The threats to a system

C : The mitigating actions that resolve the exposure

D : The system interfaces

Answer: B,C

Question 5

Why are requirements foundational elements?

Options :

A : They tell us what the software must be able to do.

B : They tell us how we will build the software.

C : They tell us the methods for securing the code.

D : They detail the threat environment in which the software functions.

Answer: A

Smartly Prepare Exam with Free Online CSSLP Practice Test