CySA+ Study for PASS Certification Exam !!! Flashcards
??? are interfaces between clients and servers or apps and OS’s that define how the client should ask for info from the server and how the server will respond. This means that programs written in any language can implement the ??? and make requests.
APIs
??? software design that provides services to components of a system or service by communication protocols on a network. ??? : XML-based messaging protocol used frequently for web service, and defines how messages should be formatted and exchanged, how transport of the messages occurs, and models for processing them; ??? is customizable.
SOA / SOAP
use a uniform interface, separate clients and servers, are stateless (dont use server-side sessions), mark whether server responses are cacheable, designed to allow layering of services between clients and servers, and they may have exe code in their responses.
REST
??? reviewing code for an app. Uses source code for app for review, doesnt run the program, but on understanding how program is written/what code is intended to do. Has automated/manual static code analysis.
??? relies on execution of code while providing it w/input to test software. Use of automated tools are much more than manual testing.
Static Code Analysis / Dynamic Code Analysis
??? sending random or invalid data to app to test ability to handle unexpected data. Useful for detecting input validation and logic issues and memory leaks and error handling. Identifies only simple problems.
Fuzzing
??? directly inserts faults into error handling paths; Compile-time Injection : which inserts faults by modifying source code of app. Protocol Software Fault Injection : fuzzing tech.’s to send unexpected data to app or service that expects protocol-compliant input. Runtime Injection : data into running program either by inserting it into memory of program or injecting faults in way causing program to deal with them.
Fault Injection
??? : makes small modifications to program itself. The mutants are rejected if cause failures. Meant to replicate common errors that developers might have to deal with.
??? : done to see if app can handle load conditions.
??? : ensure changes made dont create new issues, like when patches are installed.
Mutation Testing / Stress Testing and Load Testing / Regression Testing
??? : remote attestation, allowing hardware and software configs to be verified, Binding, which encrypts data; Sealing which encrypts data and sets requirements for the state of ??? before encryption.
??? helps prevent boot-level malware.
TPM chip / Measured Boot
??? : typically external devices or plug-in cards used to create, store, and manage digital keys for cryptographic functions and authentication, and offload cryptographic processing.
??? : linux maintains info about state of system, events, etc and usually in /var/log
HSMs / Syslog
??? concept that relies on stack of security tools to collect data from variety of security sources then auto respond. 3 Major Components of ??? -> 1) Threat and Vulnerability Management : includes threat management tools and vulnerability scanners and workflow, reporting and collaboration tools that support them. 2) Security Incident Response : provides tools to manage incidents from start to finish. 3) Security Operations Automation : workflows and reporting, policy, and process management tools.
SOAR
