Chapter 4- Software Development Security

Question 1

SDLC Basic Phases

Answer 1

Project Initiation and Planning; Functional Requirements Definition; System Design Specification; Developmnet and Implementation; Documentation and common program controls; Testing and evaluation control (C&A); Transistion to production (implementation)

Question 2

SLC

Answer 2

Extends above SDLC - Operations and maintenance support; revisions and system replacement; project initiation and planning

Question 3

Project Initiation

Answer 3

Security activities should be done in parallel

Question 4

Functional Requirements

Answer 4

Security requirements should be formalized

Question 5

System Design Specifications

Answer 5

security features designed, generally based on the overall security architecture for the company

Question 6

Development and Implementation

Answer 6

code should be analyzed to eliminate common vulnerabilities that might lead to security exploits and other risks

Question 7

Documentation and Common Program Controls

Answer 7

types of logging the program should be doing

Question 8

Acceptance

Answer 8

tested to ensure it meets all the functional and security requirements. Testing is to ensure that the application meets its security requirements and specifications and uncover all design flaws that would violate security policy. Run independently in a production simulation environment. First Phase of C&A

Question 9

Testing and Evaluation Controls

Answer 9

bounds checking and data validation - test data should not be production data. test all changes

Question 10

C&A

Answer 10

Certification and Accreditation - Certification is the process of evaluating security stance of the software and against a set of security standards or policies. Verify conversion. Accreditation - Acceptable level of risk is determined. Provisional accreditation is for a specific period and outlines specific changes. Full means no changes required.

Question 11

Transition to Production (implementation)

Answer 11

obtain security accreditation, train users, implement, parallel operations if necessary.

Question 12

Revisions and System Replacement

Answer 12

Changes must follow SDLC and be recorded in change managment system. Reviews should inlcude security planning and procedures - application audits should be conducted periodically including documentatin security incidents and system failures.

Question 13

CMM

Answer 13

Capability Maturity Model for Software - focuses on quality management process and has 5 maturity levels. ISO 9000 includes software development quality standards

Question 14

Waterfall life-cycle method

Answer 14

oldest method - list of activities that must be completed before the next phase begins

Question 15

Structured Programming Development

Answer 15

promotes discipline, allows introspection, and provides controlled flexibility - requires defined processes and modular development - each phase is subject to reviews and appraisals

Question 16

Spiral Method

Answer 16

nested version of the Waterfall method. - Plan DO Check Act sub phases

Question 17

Clean room

Answer 17

method of controlling defects - focuses defect prevention. more time spent in early phases.

Question 18

Iterative development

Answer 18

successive refinements of requirements, design, and coding

Question 19

Prototyping

Answer 19

simplified version, release for review, user feed back build better second version

Question 20

Modified Prootype model

Answer 20

ideal for Web app development - deployed in quick time frame

Question 21

Rapid application development

Answer 21

strict time limits on each phase - rapid prototyping

Question 22

Joint Analysis Development

Answer 22

developers work directly with users to develop a working application

Question 23

Exploratory Model

Answer 23

set of requirements built with what is currently available

Question 24

CASE

Answer 24

computer-aided software engineering - use computers and utilities to help with systematic analysis, desing, development, implementation and maintenance of software

Question 25

Component based development

Answer 25

standardized building blocks to assemble rather than develop

Question 26

Reuse model

Answer 26

built from existing components.

Question 27

Extreme programming

Answer 27

values of simplicity, communication and feedback - fairly structured

Question 28

DBMS

Answer 28

a suite of application programs that typically manage large structured sets of persistant data. 4 elements - database engine, hardware platform, application software and users

Question 29

Transaction persistence

Answer 29

state of the database is the same after a transaction has occured and transaction should be durable

Question 30

Fault Tolerance and recovery

Answer 30

in case of failure data should remain int its original state. Two types of recovery - rollback and shadowing. Rollback - incomplete transactions are backed out. Shadow requires the use of transaction logging to indetify the last good transaction.

Question 31

Hierarchial Database Management Model

Answer 31

stores data in a series or records together as a record type. These record types are the equivalent of tables in a relational model. can only cope with a single tree

Question 32

Network Database Management Model

Answer 32

refers to method of how data is linked to other data.

Question 33

Relational Database Management Model

Answer 33

series of tables that have columns representating variables and rows containing specific instances of data. Tables/Relations data structures; Integrity rules on allowable values and combinations of values; data manipulation agents. Rows/Tuples - Columns/Attributes atomic - every row/column position - one data value concurrency - dbms interleaves actions (read/writes) of various transactions atomicity - execute all actions in one step or not executing any actions at all

Question 34

Integrity

Answer 34

Entity Integrity and Referential Integrity derived from Clark and Wilson. Entity - tuple must have a unique and non null value in the primary key. Referential - for any foreign key value, the referenced relation must have a tuple with the same value for its primary key.

Question 35

Schema

Answer 35

structure of a database

Question 36

Tables

Answer 36

columns and rows of data

Question 37

Views

Answer 37

defines what a user can view

Question 38

DDL

Answer 38

used to create databases, tables, view, indices

Question 39

DML

Answer 39

used to query and extract data

Question 40

DCL

Answer 40

commit, savepoint, rollback, set transaction

Question 41

Object oriented database

Answer 41

interact with applications without the language overhead

Question 42

object-relational

Answer 42

hybrid - provides updrade path

Question 43

ODBC

Answer 43

Open Database Connectivity - API between applications and databases - credentials stored in clear text - Microsoft

Question 44

JDBC

Answer 44

Java Database Connectivity - connect directly or through ODBC - Sun Microsystems

Question 45

XML

Answer 45

eXtensible Markup Language - structuring data in a text file. W3C standard since 1998

Question 46

OLE DB

Answer 46

Object Linking and Embedding Database - object embedded or linked to the inside of another object. The component object model (COM) is the protocol that allows OLE to work.

Question 47

Tiered application approach

Answer 47

Presentation, business logic layer and data layer

Question 48

ActiveX Data Objects

Answer 48

ADO- interface for all kinds of data

Question 49

Dublin Core

Answer 49

metadata element standard - the availability of a practical , usable namespace.

Question 50

OLAP

Answer 50

Online Analytical Processing - formulate queries

Question 51

Data mining

Answer 51

decision making technique

Question 52

Aggregation and Inference

Answer 52

ability to combine nonsensitive data from separate source to create sensitive information Inference - ability to deduce sensitive or restricted information from observing available information

Question 53

Bypass attacks

Answer 53

bypass front end application controls and directly access and manipulate data

Question 54

concurrency

Answer 54

when actions are processes run at the same time

Question 55

data contamination

Answer 55

input data errors affects integrity

Question 56

deadlocking

Answer 56

two users try to access at the same time

Question 57

Atomicity

Answer 57

ACID - A - all parts of transactions are either committed or rolled back

Question 58

Consistency

Answer 58

ACID - C - database is transformed from one valid state to another valid state

Question 59

Isolation and Durability

Answer 59

ACID - I - transaction is invisible until complete ACID - D - results of completed transaction are permanent

Question 60

OLTP

Answer 60

online transaction processing

Question 61

Neural networks

Answer 61

develop classification, regression, association, and segmentation models based on the way neurons work in the human brain

Question 62

HTTP

Answer 62

stateless technology

Question 63

von Neumann

Answer 63

all computers today - no inherent difference between data and programming in the memory of the computer

Question 64

citizen programmers

Answer 64

unlikely to be trained in system development practices

Question 65

covert channel

Answer 65

information flow issue. allows two cooperating processes to transfer information in such a way that it violates the system’s security policy. Two types: storage and timing

Question 66

virus

Answer 66

defined by its ability to reproduce and spread

Question 67

worm

Answer 67

spreads on its own

Question 68

multipartitie

Answer 68

originally named to indicate that it was able to infect both boot sectors and program files. - now can affect more than one type of object.

Question 69

macro virus

Answer 69

infect data files and tend to remain resident - operates across hardware or operating system platforms -

Question 70

script virus

Answer 70

stand alone files that can be executed by an interpreter

Question 71

trojan

Answer 71

pretends to do one thing while performing another unwanted action.

Question 72

RAT

Answer 72

remote access trojan

Question 73

The key objective of application security is to ensure: A. that the software is hacker proof B. the confidentiality, integrity and availability of data C. accountability of software and user activity D. prevent data theft

Answer 73

B. the confidentiality, integrity and availability of data

Question 74

For an application security program to be effective within an organization, it is critical to A. Identify regulatory and compliance requirements B. Educate the software development organization the impact of insecure programming C. Develop the security policy that can be enforced D. Properly test all the software that is developed by your organization for security vulnerabilities

Answer 74

C. Develop the security policy that can be enforced

Question 75

The best defense against session hijacking and man in the middle attacks is to use which of the following in the development software: A. Unique and random identification B. Use prepared statements and procedures C. Database views D. Encryption

Answer 75

A. Unique and random identification

Question 76

An important characteristic of bytecode is that is A. has increased secure inherently due to sandboxing B. manages memory operations automatically C. is more difficult to reverse engineer D. is faster than interpreted languages

Answer 76

D. is faster than interpreted languages

Question 77

Two cooperating processes simultaneously compete for a shared resource, in such a way that they violate the system’s security policy, is commonly known as A. Covert channel B. Denial of Service C. Overt Channel D. Object resue

Answer 77

A. Covert channel

Question 78

An organization has a website with a guest book feature, where visitors to the web site can input there names and comments about the organization. Each time the guest book web page loads, a message box is prompted with the message “You have been POwnd” followed by redirection to a different website. Analysis reveals that the no input validation or output encoding is being performed in the web application. This is the basis for which type of attack? A. Denial of Service B. Cross-site scripting (XSS) C. Malicious File Execution D. Injection Flaws

Answer 78

B. Cross-site scripting (XSS)

Question 79

The art of influencing people to divulge sensitive information about themselves or their organization by either coercion or masquerading as a valid entity is known as A. Dumpster Diving B. Shoulder Surfing C. Phishing D. Social Engineering

Answer 79

D. Social Engineering

Question 80

An organization’s server audit logs indicate that an employee that was terminated in the morning was still able to access certain sensitive resources on his system, on the internal network, that afternoon. The logs indicate that the employee had logged on successfully before he was terminated but there is no record of him logging off before he was terminated. This is an example of which type of attack? A. time of check/time of use (toc/tou) B. Logic bomb C. Remote- access Trojans (RATs) D. Phishing

Answer 80

A. time of check/time of use (toc/tou)

Question 81

The most effective defense against a buffer overflow attack is A. disallowing dynamic construction of queries B. bounds checking C. encoding output D. forced garbage collection

Answer 81

B. bounds checking

Question 82

It is extremely important that as one follows a software development project, security activities are performed A. before release to production, so that the project is not delayed B. if a vulnerability is detected in your software C. in each stage of the life cycle D. when management mandates it

Answer 82

C. in each stage of the life cycle

Question 83

audit logs are what type of control? A. Preventative B. Detective C. Compensating D. Corrective

Answer 83

B. Detective

Question 84

Who can enforce the separation of duties by ensuring that programmers do not have access to production code? A. Operations Personnel B. software librarian C. Management D. Quality Assurance personnel

Answer 84

B. software librarian

Question 85

The technical evaluation of assurance to ensure that security requirements have been met is known as? A. Accreditation B. Certification C. Validation D. Verification

Answer 85

B. Certification

Question 86

defect prevention rather than defect removal is characteristic of which of the following software development methodology A. Computer Aided Software Engineering (CASE) B. Spiral C. Waterfall D. Cleanroom

Answer 86

D. Cleanroom

Question 87

A security protection mechanism in which untrusted code, which is unsigned, is restricted from accessing system resources is known as? A. Sandboxing B. Non-repudiation C. Separation of Duties D. Obfuscation

Answer 87

A. Sandboxing

Question 88

A program that does not reproduce itself but pretends to be performing a legitimate action, while actually performing malicious operations in the background, is the characteristic of which of the following A. Worms B. Trapdoor C. Virus D. Trojan

Answer 88

D. Trojan

Question 89

A plot to take insignificant pennies from a user’s bank account is an example of A. Social Engineering B. Salami Attack C. Pranks D. Hoaxes

Answer 89

B. Salami Attack

Question 90

role based access control to protect confidentiality of data in databases can be best achieved through which of the following? A. Views B. Encryption C. Hashing D. Masking

Answer 90

A. Views

Question 91

The two most dangerous database attacks containing disparate non-sensitive information are A. Injection and scripting B. Session hijacking and cookie poisoning C. Aggregation and inference D. Bypassing authentication and insecure cryptography

Answer 91

C. Aggregation and inference

Question 92

A property that ensures only valid or legal transactions that do not violate any user-defined integrity constraints in DBMS technologies is known as A. Atomicity B. Consistency C. Isolation D. Durability

Answer 92

B. Consistency

Question 93

Expert systems are comprised of a knowledge base containing modeled human experience and which of the following? A. Inference engine B. Statistical models C. Neural networks D. Roles

Answer 93

A. Inference engine