2.3 - Summarize secure application development, deployment, and automation concepts. Flashcards

1
Q

Development (Environment)

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Test (Environment)

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Staging (Environment)

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Production (Environment)

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Quality assurance (QA) (Environment)

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Provisioning and deprovisioning

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Integrity measurement

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q
  • Normalization (Secure coding techniques)
A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q
  • Stored procedures (Secure coding techniques)
A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Obfuscation/camouflage (Secure coding techniques)

A

-transforming data into format where orig. info can’t be retrieved

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q
  • Code reuse/dead code (Secure coding techniques)
A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q
  • Server-side vs. client-side
    execution and validation (Secure coding techniques)
A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q
  • Memory management (Secure coding techniques)
A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q
  • Use of third-party libraries and software development kits (SDKs) (Secure coding techniques)
A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q
  • Data exposure (Secure coding techniques)
A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Open Web Application
Security Project (OWASP)

17
Q

Compiler (Software diversity)

18
Q

Binary (Software diversity)

19
Q
  • Automated courses of action (Automation/scripting)
20
Q
  • Continuous monitoring (Automation/scripting)
21
Q
  • Continuous validation (Automation/scripting)
22
Q
  • Continuous integration (Automation/scripting)
23
Q
  • Continuous delivery (Automation/scripting)
24
Q
  • Continuous deployment (Automation/scripting)
25
Q

Elasticity

26
Q

Scalability

27
Q

Version control