Defensive Design

Question 1

What is defensive design?

Answer 1

To ensure programs function properly + don’t produce errors

Question 2

How do programmers carry out defensive design?

Answer 2

Anticipate how users may misuse program
Ensure code is well - maintained
Testing to reduce errors

Question 3

Input Validation

Answer 3

Checking if data meets certain criteria before passing it into the program

Question 4

Example of input validation

Answer 4

Checking that an email contains @ symbol

Question 5

Types of Input validation check

Answer 5

Range Check
Presence Check
Format Check
Look-up table
Length table

Question 6

Input Validation: Range Check

Answer 6

Checks if data is within a specified range

Question 7

Input Validation: Presence Check

Answer 7

Checks if data has been enterd

Question 8

Input Validation: Format Check

Answer 8

Checks if data is in correct format

Question 9

Input Validation: Look-up Table

Answer 9

Ches the data against a table of acceptable values

Question 10

Input Validation: Length Table

Answer 10

Checks if data is the correct length

Question 11

Authentication

Answer 11

To confirm the identity of a user before they are given access to data

Question 12

Example of Authentication

Answer 12

Passwords - can be associated with their username

Question 13

Ways to increase the security of a password - based authentication system:

Answer 13

Force users to use strong passwords
Limit the number of failed attempts before access is blocked