Chapter 4 Flashcards

1
Q

Why security software requirements matter(5)

A
  • protection of sensitive data
  • regulatory compliance
  • user trust
  • risk mitigation
  • coast and effort effective
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Key aspects of security software requirements: (10)

A

1- authentication

2- authorization

3- data integrity

4- encryption

5- vulnerability management

6- logging and monitoring

7- compliance

8- resilience and availability

9- input validation

10- incident response

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What’s the difference between authorization and authentication

A

In iPad

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

To establish security standards, metrics and governance do the following (4)

A
  • identify required standards
  • Define security requirements
  • define matrices and compliance reporting
  • create a security exception process
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

AI safety and security (4)

A
  • AI security and protection
  • New threat model
  • AI resilience
  • AI Discretion
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Practice 2 require use of proven security features , languages and frameworks

A
  • Identity

-AI safety and security

  • data protection
  • logging and telemetry
  • user trust approved tools
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Logging serves several purposes(4)

A
  • debugging and monitoring
  • monitoring and analysis
  • security and auditing
  • audit trials
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Examples types of logs(3)

A

Error logs

Access logs

Transaction logs

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Use approved tools

A

Microsoft SDL Tools

Git hub Microsoft DEVskim

Visual studio marketplace

How well did you know this?
1
Not at all
2
3
4
5
Perfectly