DEV

Question 1

set of best practices for programmers to seek in all application or database design: Atomicity, Consistency, Isolation, Durability

Answer 1

ACID test

Question 2

Authenticode, relies on digital signatures, annoying dialogs people click away

Answer 2

Active X

Question 3

a library of commands maintained by a system for other programs to use, provides consistency and integrity for the programs

Answer 3

Application Programming Interface

Question 4

is the tool that converts a high level language into machine language

Answer 4

Assembler

Question 5

Converts machine-code into binary machine instructions. Translate assembly language into machine language.

Answer 5

Assembler - DEV

Question 6

low-level programming language with a few simple operations this code is harder to maintain, less readable, and has the potential to be substantially longer

Answer 6

Assembly Code

Question 7

indivisible, data field must contain only one value that either all transactions take place or none do

Answer 7

Atomicity

Question 8

Program installed by an attacker to enable him to come back on a later date without going through the proper authorization channels, maintenance hook for developers sometimes

Answer 8

Backdoor

Question 9

Results exhibited by an object in response to a msg

Answer 9

Behavior

Question 10

Most significant byte is stored first. SPARC uses this architecture.

Answer 10

Big Endian

Question 11

When a Windows system experiences a dangerous failure and enters a full secure state (reboot)

Answer 11

Blue Screen of Death

Question 12

Moves or overwrites the boot sector with the virus code

Answer 12

Boot sector

Question 13

Attacks the MBR - the portion of bootable media that the computer uses to load the operating system during the boot process. MBR viruses store the majority of their code on another portion of the storage media

Answer 13

boot sector infector

Question 14

organized group of compromised computers

Answer 14

Botnet

Question 15

an area of memory allocated with a fixed size. It is commonly used as a temporary holding zone when data is transferred between two devices that are not operating at the same speed or workload.

Answer 15

Buffer

Question 16

Occurs when an area that has been allocated a specific storage space has more data copied to it than it can handle. Two classes include heap and stack overflow.

Answer 16

Buffer Overflow

Question 17

program code that is in between the high level language code understood by humans and machine code read by computers.

Answer 17

Byte Code

Question 18

An attribute that is a unique identifier within a given table, one is chosen to be the primary and the others are alternate. Subset of attributes that can be used to uniquely identify any record in a table. No two records in the same table will ever contain the same values for all attributes. Each table may have one or more, which are chosen from column headings.

Answer 18

Candidate Key

Question 19

Tool for development, if concerned about security

Answer 19

CASE

Question 20

a business managers and software engineer’s process to protect the organization from development-related issues. Has three components: Request, Change, and Release Control

Answer 20

Change Management Process

Question 21

part of a transaction control for a database which informs the database of the last recorded transaction

Answer 21

Checkpoint

Question 22

OOP concept of a template that consist of attributes and behaviors

Answer 22

Class

Question 23

converts source code to an executable

Answer 23

compiler

Question 24

Write code correctly first time, quality thru design

Answer 24

Cleanroom

Question 25

Is an opposing coding stance that keeps source code confidential. Can be reverse engineered or decompiled

Answer 25

Closed source

Question 26

Is one that is proprietary with no third-party product support, does not define if it’s code can be viewed

Answer 26

Closed system

Question 27

Peer-driven process that includes multiple developers, may be automated, may review several hundred lines an hour, done after it’s developed

Answer 27

Code Review

Question 28

Ability to perform without use of other programs, strength of the relationship between the purposes of methods within the same class

Answer 28

Cohesion

Question 29

Support exchange of objects amongst programs. This used to be called OLE. DCOM is the network variant (distributed)

Answer 29

COM, Common Object Model

Question 30

infected code is stored not in the host program, but in a separate files. Takes advantage of search order of an OS

Answer 30

Companion virus

Question 31

converts source code to an executable

Answer 31

Compiler

Question 32

Translates higher level program into an executable file

Answer 32

Complier - DEV

Question 33

Appended to executables

Answer 33

Compression

Question 34

Periodic, should be conducted to ensure that the actual production environment is consistent with the accounting records and that no unauthorized changes have taken place.

Answer 34

Configuration Audit

Question 35

Ensures that changes to software versions are made in accordance with policies. Updates can be made only from authorized distributions in accordance with those policies.

Answer 35

Configuration Control

Question 36

Administrators document covered software products throughout the organization.

Answer 36

Configuration Identification

Question 37

Used to control the version( s) of software used throughout an organization and formally track and control changes

Answer 37

Configuration Management Process

Question 38

property that data is represented in the same manner at all times

Answer 38

Consistency

Question 39

Broker architecture enables programs written in different languages and using different platforms and OS’s through IDL (Interface Definition Language)

Answer 39

CORBA, Common object request

Question 40

Effect on other modules. Level of interaction between objects

Answer 40

Coupling

Question 41

Is a way to receive information in an unauthorized manner, information flood that is not protected by a security mechanism

Answer 41

Covert channels

Question 42

Processes communicate via storage space on the system; Writing to storage by one process and reading by another of lower security level.

Answer 42

Covert Storage Channel

Question 43

One process relays to another by modulating its use of system resources. Typing rhythm of Morse Code is an example

Answer 43

Covert timing channel

Question 44

malware that uses the trust on a website to redirect users to untrusted websites which captures data or installs more malware

Answer 44

Cross Site Scripting

Question 45

attacks exploit the trust that sites have in a user’s browser by attempting to force the submission of authenticated request to third-party sites.

Answer 45

CSRF (XSRF)
Cross Site Request Forgery

Question 46

false memory reference

Answer 46

Dangling pointer

Question 47

a description of a database

Answer 47

Data Dictionary

Question 48

malware that makes small random changes to many data points

Answer 48

Data Diddler

Question 49

a feature of object oriented programming languages. Classes and variables may be marked private, which restricts outside access to the internal workings of a class.

Answer 49

Data Hiding

Question 50

small data warehouse

Answer 50

Data marts

Question 51

specifies the way data will be stored in memory

Answer 51

Data Type

Question 52

z-Mixing data with different classification levels and/ or need-to-know requirements and is a significant security challenge. Often, administrators will deploy a trusted front end to add multilevel security to a legacy or insecure DBMS

Answer 52

Database Contamination

Question 53

Process of splitting a single database into multiple parts, each with a unique and distinct security level or type of content

Answer 53

Database Partitioning

Question 54

a copy of transaction data, designed for querying and reporting

Answer 54

Data warehouse

Question 55

a collection of information designed to reduce duplication and increase integrity

Answer 55

Databases

Question 56

Schemas, blueprints; tables, views

Answer 56

DB main components

Question 57

Refers to a suite of software programs that maintains and provides controlled access to data components stored in rows and columns of a table

Answer 57

DBMS

Question 58

subset of SQL used to control access to data in a database, using GRANT and REVOKE statements

Answer 58

DCL - Data Control Language

Question 59

enables applications to work in a client/server model by providing the inter-process communications mechanism (IPC)

Answer 59

DDE - Dynamic Data Exchange

Question 60

defines structure and schema

Answer 60

DDL - Data Definition Language

Question 61

a condition in which neither party is willing to stop their activity for the other to complete

Answer 61

Deadlock

Question 62

Forwarding a request to another object

Answer 62

Delegation

Question 63

an availability attack, to consume resources to the point of exhaustion

Answer 63

Denial of Service

Question 64

a combination of Development and Operations, symbolizing that these functions must merge and cooperate to meet business requirements

Answer 64

DevOps

Question 65

Attempt to force the web application to navigate up the file hierarchy and retrieve a file that should not normally be provided to a web user

Answer 65

Directory Traversal Attack

Question 66

When one transaction reads a value from a Db that was written by another transaction that did not commit, Db concurrency issue

Answer 66

Dirty Reads

Question 67

software tool is used to convert compiled programs in machine code to assembly code

Answer 67

Disassembler

Question 68

an availability attack, to consume resources to the point of exhaustion from multiple vectors

Answer 68

Distributed Denial of Service

Question 69

view, control and use the database via VIEW, ADD, MODIFY, SORT and DELETE commands

Answer 69

DML - Data Manipulation Language

Question 70

what is will remain, persistence

Answer 70

Durability

Question 71

Created on the fly by software in an Object Oriented Programming environment. Preassembled code that is a self-contained module

Answer 71

Dynamic Lifetime Objects

Question 72

a programming component that runs on Win32 systems and contains functionality that is used by many other programs

Answer 72

DLL - Dynamic Link Library

Question 73

a feature of object-oriented programming, provides a logical structure to a program and allows for easy methods of inheritance

Answer 73

Encapsulation

Question 74

Seek to embody accumulated knowledge on a particular subject and apply it in a consistent fashion to future decisions. Has two main components: the knowledge base and the inference engine.

Answer 74

Expert Systems

Question 75

causes a software vulnerability to be triggered and leveraged by the attacker

Answer 75

Exploit

Question 76

Allow programmers to create code using visual interfaces

Answer 76

Fifth-Generation Languages (5GL)

Question 77

Include all machine languages

Answer 77

First-Generation Languages (1GL)

Question 78

Represents a reference to an entry in some other table that is a primary key there. Link between the foreign and primary keys represents the relationship between the tuples. Enforces referential integrity Main Components of a Db using Db - Schemas; blueprints - tables - views

Answer 78

Foreign Key

Question 79

Attempt to approximate natural languages and include SQL, which is used by databases

Answer 79

Fourth-Generation Languages (4GL)

Question 80

a miniature program

Answer 80

Function

Question 81

Define need, requirements, review proposed security controls

Answer 81

Functional Analysis and Planning

Question 82

Bar type; shows the interrelationships over time between projects and schedules. Graphical illustration of a schedule that helps plan, coordinate, and track specific project tasks. WBS a subpart

Answer 82

Gantt Chart

Question 83

Is similar to process isolation in purpose. Difference is this enforces these requirements through the use of physical hardware controls rather than the logical process isolation controls imposed by an operating system

Answer 83

Hardware segmentation

Question 84

an area of memory utilized by an application and is allocated dynamically at runtime. Static variables are stored on the stack along with data allocated using the malloc interface.

Answer 84

Heap

Question 85

Behavioral can detect new malware

Answer 85

Heuristic ANTI-Virus

Question 86

Module largely affects many more modules

Answer 86

High coupling

Question 87

False warnings

Answer 87

HOAXES

Question 88

Single patch, patches provide updates to operating systems and applications

Answer 88

Hotfix, update, Security fix

Question 89

uncheck data input which results in redirection

Answer 89

HTTP Response Splitting

Question 90

When one transaction is using an aggregate function to summarize data stored in a Db while a second transaction is making modifications to a Db, causing incorrect information

Answer 90

Incorrect Summaries

Question 91

to jump to a conclusion

Answer 91

Inference

Question 92

object-oriented organization and encapsulation allow programmers to easily reuse previously written code. It saves time since programmers do not have to recode previously implemented functionality.

Answer 92

Inheritance

Question 93

OOP concept of an object at runtime

Answer 93

Instance

Question 94

in the case of unsigned values, this occurs when an overly large unsigned value is sent to an application that “passes” the integer back to zero or a small number

Answer 94

Integer Wrapping

Question 95

line by line translation from a high level language to machine code

Answer 95

Interpreter

Question 96

Reads higher level code, one line at the time to produce machine instructions

Answer 96

Interpreter - DEV

Question 97

another subject cannot see an ongoing or pending update until it is complete

Answer 97

Isolation

Question 98

modern, object oriented programming language. It combines a similar syntax to C and C++ with features such as platform independence and automatic garbage collection.

Answer 98

Java

Question 99

Interpreted language that does not make use of a complier to transform code into an executable state. Java, C, and C++ are all compiled languages

Answer 99

JavaScript

Question 100

Used by processor to execute instructions from OS

Answer 100

Kernel Mode

Question 101

Implement a structure similar to the ring model used for operating modes and apply it to each operating system process

Answer 101

Layering processes

Question 102

the least significant byte is stored first

Answer 102

Little Endian

Question 103

a program that waits for a condition or time to occur that executes an inappropriate activity

Answer 103

Logic bomb

Question 104

Executes when a certain event happens (like accessing a bank account or employee being fired) or a data/time occurs

Answer 104

Logic Bomb/Code Bomb

Question 105

Tool used for covert channel that writes data directly after the ICMP header

Answer 105

LOKI

Question 106

When one transaction writes a value to the Db that overwrites a value needed by transactions that have earlier precedence

Answer 106

Lost Updates

Question 107

the hardware address of a particular computer system

Answer 107

MAC

Question 108

program instructions based upon the CPU’s specific architecture

Answer 108

Machine language

Question 109

Most common in office productivity documents .doc/.docx

Answer 109

Macro Virus

Question 110

inappropriate data

Answer 110

Malformed input

Question 111

a function call dynamically allocates n number of bytes on the heap. Many vulnerabilities are associated with the way this data is handled.

Answer 111

malloc

Question 112

Bombing, strikes, toxin spills

Answer 112

Man-made Threats

Question 113

Software solution to manage the myriad mobile devices that employees use to access company resources. Goals are to improve security, provide monitoring, enable remote management, and support troubleshooting

Answer 113

MDM - Mobile device management

Question 114

a function call is used to fill a heap buffer with a specified number of bytes of a certain character

Answer 114

Memset

Question 115

Communication to object to perform an action

Answer 115

Message

Question 116

information about data or records

Answer 116

Metadata

Question 117

another name for a function in languages such as Java and C#. It may be thought of as a miniature program.

Answer 117

Method

Question 118

Essential to keep data with different requirements separate

Answer 118

Multilevel Security

Question 119

Infects both the boot sector and executable files; becomes resident first in memory and then infects the boot sector and finally the entire system, uses two or more propagation mechanisms

Answer 119

Multipart virus

Question 120

Class inherits characteristics from more than one parent class

Answer 120

Multiple Inheritance

Question 121

Capable of implementing a much higher level of security. These systems are certified to handle multiple security levels simultaneously by using specialized mechanisms

Answer 121

Multistate systems

Question 122

Fires, explosions, water, storms

Answer 122

Natural Threats

Question 123

A popular vulnerability scanner managed by Tenable Network Security, and it combines multiple techniques to detect a wide range of vulnerabilities. It uses port scans to detect open ports and identify the services and protocols that are likely running on these systems. Once it discovers basic details about systems, it can then follow up with queries to test the systems for known vulnerabilities, such as if the system is up-to-date with current patches. Attacker can use to best identify vulnerabilities in a targeted system

Answer 123

Nessus

Question 124

Use complex computations to replace partial functions of the human mind, Based on function of biologic neurons, Works with weighted inputs

Answer 124

Neural Networks

Question 125

Attached to .exe

Answer 125

Non-resident virus

Question 126

a term used to describe a programming variable which has not had a value set, this value is not necessarily the same as a value of “” or 0.

Answer 126

NULL

Question 127

design philosophy and a type of programming language, which breaks a program into smaller units. Each unit has it’s own function.

Answer 127

Object Oriented Programming

Question 128

unclear buffers or media

Answer 128

Object reuse

Question 129

programs are organized into classes. Instances of classes contain data and methods which performs actions on that data.

Answer 129

Object-oriented

Question 130

feature that allows applications to communicate with different types of databases without having to be directly programmed for interaction with each type. Acts as a proxy

Answer 130

ODBC - Open Database Connectivity

Question 131

a bug is present when a buffer is set up with size n and somewhere in the application a function attempts to write n+1 bytes to the buffer. This often occurs with static buffers.

Answer 131

Off-by-one

Question 132

Objects are the basic units, and instances of classes

Answer 132

OOD, Design

Question 133

Employment of objects and methods
If class = airplane, objects like fighter plane, cargo plane, passenger plane can be created. Method would be what a plane would do with a message like: climb, dive, and roll

Answer 133

OOP, Programming

Question 134

Is a coding stance that allows others to view the source code of a program, distributed free or for a fee

Answer 134

Open source

Question 135

Is one with published APIs that allow third parties to develop products to interact with it

Answer 135

Open system

Question 136

Release into production. Certification/accreditation

Answer 136

Operations and Maintenance

Question 137

Middleware that acts as locators and distributors of the objects across networks

Answer 137

ORBs, Object Request Brokers

Question 138

business and technical process of applying security software updates in a regulated periodic way

Answer 138

Patch Management

Question 139

Prevents outages from known attacks by ensuring systems are patched. Patches aren’t available for new attacks. However, it doesn’t provide the updates. Ensuring systems are patched reduces vulnerabilities but it does not eliminate them

Answer 139

Patch Management system

Question 140

final purpose or result

Answer 140

Payload

Question 141

project-scheduling tool used to judge the size of a software product in development and calculate the standard deviation (SD) for risk assessment. Relates the estimated lowest possible size, the most likely size, and the highest possible size of each component. Used to direct improvements in project management and software coding to produce more efficient software

Answer 141

PERT - Program Evaluation Review Technique

Question 142

Malicious variation of official BIOS or firmware is installed that introduces remote control or other malicious features into a device. UEFI – replacement for BIOS

Answer 142

Phlashing

Question 143

idea that program code can run on different systems without modification or recompilation

Answer 143

Platform Independence

Question 144

Occurs when two or more rows in the same relational database table appear to have identical primary key elements but contain different data for use at differing classification levels. It is often used as a defense against inference attacks

Answer 144

PolyInstantiation

Question 145

This is also a self-garbling where it changes the “garble” pattern each time it spreads. As a result, it is also difficult to detect

Answer 145

Polymorphic virus

Question 146

objects or programming that looks different, but act the same. More accurately: Objects of many different classes that are related by some common super class. When different subclasses may have different methods using the same interfaces that respond differently

Answer 146

Polymorphism

Question 147

Provide the sole tuple-level addressing mechanism within the relational model. Cannot contain a null value and cannot change or become null during the life of each entity. When the primary key of one relation is used as an attribute in another relation, it is the foreign key in that relation. Uniquely identify a record in a database

Answer 147

Primary Key

Question 148

LIBC function for outputting data to a command-line interface

Answer 148

Printf

Question 149

may be viewed as a sequence of instructions, where data at certain memory locations are modified at each step

Answer 149

Procedural Language Programs

Question 150

collection of commands that are understood by a computer system and may be written in a high-level language, such as Java or C, or in a low-level assembly language

Answer 150

Program

Question 151

Feasibility, cost, risk analysis, Management approval, basic security objectives

Answer 151

Project Initiation

Question 152

Execution and memory space assigned to each process

Answer 152

Protection domain

Question 153

(MIT’s MULTICS design)
Ring 0 - Operating system kernel. The OS’ core. The kernel manages the HW (for example, processor cycles and memory) and supplies fundamental services that the HW does not provide.
Ring 1 - Remaining parts of the operating system
Ring 2 - I/O drivers and utilities
Ring 3 - Applications and programs
Layers 1 and 2 contain device drivers but are not normally implemented in practice. Layer 3 contains user applications. Layer 4 does not exist

Answer 153

Protection Rings

Question 154

a state where two subjects can access the same object without proper mediation

Answer 154

Race condition

Question 155

Extortion via the internet, typically encrypting victim’s data and files

Answer 155

ransomeware

Question 156

Remote control programs that have the malicious code and allow for unauthorized remote access Back orifice, sub seven, net bus )

Answer 156

RAT, Remote Access Trojan

Question 157

All foreign keys reference existing primary keys

Answer 157

Referential Integrity

Question 158

an area on the processor used to store information. Intel architecture: eax, ebx, ecx, edx, esi, and edi.

Answer 158

Register

Question 159

Once the changes are finalized, they must be approved through procedure

Answer 159

Release Control

Question 160

Provides an organized framework within which users can request modifications, managers can conduct cost/ benefit analysis, and developers can prioritize tasks

Answer 160

Request Control

Question 161

Loads when a program loads in memory

Answer 161

Resident virus

Question 162

Remove. Sanitation and destruction of unneeded data

Answer 162

Revisions/Disposal

Question 163

transaction controls for a database, a return to a previous state

Answer 163

Rollback

Question 164

malware that subverts the detective controls of an operating system

Answer 164

Rootkit

Question 165

malware that makes many small changes over time to a single data point or system

Answer 165

Salami

Question 166

a construct used to control code execution. Code executed cannot affect outside systems. This is particularly useful for security when a user needs to run mobile code, such as Java applets.

Answer 166

Sandbox

Question 167

Include all assembly languages

Answer 167

Second-generation language (2GL)

Question 168

Attempts to hide by garbling its code; as it spreads, it changes the way its code is encoded

Answer 168

Self-garbling virus

Question 169

Make sure that rules are enforced on all data types, logical values that could adversely affect the structure of the database

Answer 169

Semantic Integrity

Question 170

Builds on the principle of least privilege. Requires the use of granular access permissions; that is, different permissions for each type of privileged operation. This allows designers to assign some processes rights to perform certain supervisory functions without granting them unrestricted access to the system

Answer 170

Separation of privilege

Question 171

Collection of unrelated patches released in a large collection

Answer 171

Service Pack

Question 172

used by devices to communicate with software. It is normally written by the manufacturer of a hardware device to communicate with the operating system.

Answer 172

Service Provider Interface

Question 173

byte code that executes a shell or the code that is executed when an exploit is successful

Answer 173

Shellcode

Question 174

Cannot detect new malware

Answer 174

Signature based ANTI-Virus

Question 175

Assumed each step could be completed and finalized without any effect from the later stages that may require rework

Answer 175

Simplistic Model

Question 176

unused storage capacity

Answer 176

Slack space

Question 177

Quality is a direct function of quality of development and maintenance.
Procedures, principles, and practices that underlie development process maturity. 5 Levels:

initiating – competent people, informal processes, ad-hoc, absence of formal process
repeatable – project management processes, basic life-cycle management processes
defined – engineering processes, presence of basic life-cycle management processes and reuse of code, use of requirements management, software project planning, quality assurance, configuration management practices
managed – product and process improvement, quantitatively controlled
Optimizing – continuous process improvement Works with an IDEAL model

Answer 177

Software Capability Maturity Model (CMM)

Question 178

Programmers create code. Unit testing Check modules. Prototyping, Verification, Validation

Answer 178

Software Development

Question 179

a design methodology which addresses risks early and often

Answer 179

Spiral

Question 180

Angular = progress made
Radial = cost
Lower left = development plans
Upper left = objectives of the plans, alternatives checked
Upper right = assessing alternatives, risk analysis
Lower right = final development
Left horizontal axis = includes the major review required to complete each full cycle

Answer 180

Spiral Model

Question 181

program that inappropriately collects private data or activity

Answer 181

Spyware

Question 182

a type of malformed input that takes advantage of an appropriate true conditional logic statement adding a request for data that is against the security policy

Answer 182

SQL Injection

Question 183

an area of memory used to hold temporary data. It grows and shrinks throughout the duration of a program’s runtime.

Answer 183

Stack

Question 184

occurs when a buffer has been overrun in the stack space. When this happens, the return address is overwritten, allowing for arbitrary code to be executed.

Answer 184

Stack Overflow

Question 185

Hides modifications to files or boot records and itself

Answer 185

Stealth virus

Question 186

LIBC function call is more commonly misimplemented because it copies data from one buffer to another without any size limitation

Answer 186

strcpy

Question 187

Social engineering best attack method to beat

Answer 187

Strong Passwords

Question 188

Database systems commands used to create, access, and modify data

Answer 188

SQL - Structured Query Language

Question 189

Develop detailed design specs, Review support documentation, Examine security controls

Answer 189

System Design Specifications

Question 190

Contaminates BIOS command other system files. It is often a memory resident virus

Answer 190

System infector

Question 191

project management process with following phases: design and development, production, distribution, operation, maintenance, retirement, and disposal

Answer 191

System Life Cycle

Question 192

include all compiled languages

Answer 192

Third-Generation Languages (3GL)

Question 193

Reduce the number of security-related design and coding flaws, reduce severity of non-security related files, not to reduce number of threat vectors

Answer 193

Threat Modeling

Question 194

a race condition where the security changes during the object’s access

Answer 194

Time of Check/Time of Use

Question 195

(Backdoors) (maintenance hooks) a programming device used in development to circumvent controls.

Answer 195

Trapdoors

Question 196

a program with an inappropriate second purpose

Answer 196

Trojan horse

Question 197

Pretend to do one thing while performing another

Answer 197

Trojans

Question 198

Row or record

Answer 198

Tuple

Question 199

a software simulation of a platform that can execute code. It allows code to execute without being tailored to the specific hardware processor.

Answer 199

Virtual Machine

Question 200

independent malware that requires user interaction to execute

Answer 200

Virus

Question 201

an exposure that has the potential to be exploited. Most are specific software bugs or logic errors.

Answer 201

Vulnerability

Question 202

Reinterpretation where verification evaluates the product during development against specification and validation refers to the work product satisfying the real-world requirements and concepts.
Verification=doing the job right Validation:= doing the right job

Answer 202

Waterfall including Validation and Verification (V&V)

Question 203

a design methodology which executes in a linear one way fashion

Can be managed if developers are limited going back only one step. If rework may be done at any stage it’s not manageable. Problem: it assumes that a phase or stage ends at a specific time.
System Requirements-> Software Requirements -> Analysis ->
Program Design -> Coding -> Testing -> Operations & Maintenance

Answer 203

Waterfall

Question 204

autonomous malware that requires a flaw in a service

Answer 204

Worm

Question 205

a family of computer architectures commonly associated with Intel

Answer 205

x86

Question 206

meant to describe an exploit that has been released on or before the corresponding vulnerability has been publicly released

Answer 206

0day

Question 207

a distributed system’s transaction control that requires updates to complete or rollback

Answer 207

2-phase commit

Question 208

a fundamental principle behind object-oriented programming, users of an object only need to know the proper syntax for using an object and the type of data that will be returned as a result

Answer 208

Abstraction

Question 209

Separation of duties, security testing, data validation, bounds checking, certification, accreditation, part of release control

Answer 209

Acceptance Testing and Implementation

Question 210

unsolicited advertising software

Answer 210

Adware

Question 211

Summarize large amounts of data and provide only summary information as a result

Answer 211

Aggregate

Question 212

Emphasis on customer needs for new functionality that quickly meets those needs in an iterative fashion.
- Individuals and interactions over processes and tools
- Working software over comprehensive documentation
- Customer collaboration over contract negotiation
- Responding to change over following a plan

Answer 212

Agile Software Development

Question 213

a covert storage channel on the file attribute, also File system forks

Answer 213

Alternate Data Streams

Question 214

a unique identifier and a secret token for authentication, generally have a set of access rights on the API associated with it

Answer 214

API Keys

Question 215

Initiation
Development/Acquisition
Implementation/Assessment
Operations and Maintenance
Disposal

Answer 215

800-64

Question 216

I Plan and Set Projects to Categorize Information Systems And Assess Engineering

Initiate Project - Security Planning
Categorize Information System
Assess Business Impact
Assess Privacy Impact
Ensure Secure System Development

Answer 216

800-64 Initiation

Question 217

Outputs - Supporting Documents, Common Understanding of Security Expectations, Initial Schedule of Security Activities or Decisions

Answer 217

Initiate Project - Security Planning

Question 218

Outputs - Security Categorization, High-Level Security Requirements, Level of Effort or Rigor Estimates

Answer 218

Categorize Information System

Question 219

Outputs - Linkage to Business Drivers, Core System Components, Initial Recovery Time and Point Objectives

Answer 219

Assess Business Impact

Question 220

Output - Privacy Impact Assessment

Answer 220

Assess Privacy Impact

Question 221

Outputs - Security Training for Development Team, Quality Assurance Plans, Development and Coding Standards

Answer 221

Ensure Secure System Development

Question 222

Doctor’s Assistant’S SCissoRs needed for Preparation of Surgery Room which is FAR from Rest Medical Room

Determine Acquisition Strategy
System Concept Review
Performance Specification Review
Financial Approval or Review
Risk Management Review

Answer 222

800-64 Initiation Phase Control Gates

Question 223

ARchitect designS
inSpector Documents Silly Codes
interior Designer Selects Artwork
Environment Is not Safe in DC
so Determine Security Domains
and ConTinue building

Assess Risk to System
Select and Document Security Controls
Design Security Architecture
Engineer in Security and Develop Controls
Develop Security Documentation
Conduct Testing

Answer 223

800-64 Development/Acquisition

Question 224

Outputs - Risk Assessment

Answer 224

Assess Risk to System

Question 225

Outputs - System Security Plan

Answer 225

Select and Document Security Controls

Question 226

Outputs - List of Shared Services and Shared Risk, Schematic of Security Integration, Identification of Common Controls

Answer 226

Design Security Architecture

Question 227

Outputs - Documented in Place Security Control Specification, List of Variations from Plan, Potential Test Scenarios

Answer 227

Engineer in Security and Develop Controls

Question 228

Output - Additional Security Documentation

Answer 228

Develop Security Documentation

Question 229

Output - Test Results and Implications

Answer 229

Conduct Testing

Question 230

Agent of Dteam Reads Player’s Rating For TomoRrow Rowing Match Race

Architecture or Design Review
Performance Review
Functional Test Review
Risk Management Review

Answer 230

800-64 Development/Acquisition Phase Control Gates

Question 231

IS Enterprise or Starship ASSimilated

Integrate Security into Environments or Systems
Access System Security

Answer 231

800-64 Implementation/Assessment

Question 232

Outputs - Verified List of Operational Security Controls, Completed System Documentation

Answer 232

Integrate Security into Environments or Systems

Question 233

Outputs - Security Assessment Report, Input for POA&M

Answer 233

Access System Security

Question 234

Some Tablets are Ready for Roaming like
anDRRoid
Finish Please Soon and Fund Riches so
I can Travel to Delaware or CAlifornia

System Test Readiness Review
Deployment Readiness Review
Final Project Status and Financial Review
IT Deployment or Connection Approval

Answer 234

800-64 Implementation/Assessment Phase Control Gates

Question 235

Review OR Pass Configuration to Management Committee in CC e-Mail

Review Operational Readiness
Perform Configuration Management and Control
Conduct Continuous Monitoring

Answer 235

800-64 Operations and Maintenance

Question 236

Output - Evaluation of Security Implications due to Changes

Answer 236

Review Operational Readiness

Question 237

Outputs - CCB Decisions, Updated Security Documentation, Security Evaluations

Answer 237

Perform Configuration Management and Control

Question 238

Outputs - POA&M Review, Documented Results of Continuous Monitoring, Revised Security Authorization Package, Security Reauthorization Decision

Answer 238

Conduct Continuous Monitoring

Question 239

Operational Readiness Review for
Change Control Board to conduct
Plan Of Actions and Milestones Review to determine Authorization Decision

Operational Readiness Review
Change Control Board
POA&M Review
Authorization Decision

Answer 239

800-64 Operations and Maintenance Phase Control Gates

Question 240

BE Determined Troll
even though you are SMall
Ensure IP for DHS and CS

Build and Execute Disposal or Transition Plan
Sanitize Media
Ensure Information Preservation
Dispose of Hardware and Software
Close System

Answer 240

800-64 Disposal

Question 241

Output - Disposal/Transition Plan

Answer 241

Build and Execute Disposal or Transition Plan

Question 242

Output - Media Sanitization Records

Answer 242

Sanitize Media

Question 243

Outputs - Index of Information, Location, Retention Attributes

Answer 243

Ensure Information Preservation

Question 244

Disposition Records for Hardware and Software

Answer 244

800-64 Dispose of Hardware and Software

Question 245

Documentation Verifying System Closure

Answer 245

Close System

Question 246

Some Clean Rooms for
Clowns, CowBoys are
Sure to be Ready for their Coming

System Closure Review
Change Control Board
Security Review of Closure

Answer 246

800-64 Disposal Phase Control Gates

Question 247

System Security Engineering

Answer 247

800-160 SSE

Question 248

System Life Cycle Processes

Answer 248

Agreement Processes
Organizational Project-Enabling Processes
Technical Management Processes
Technical Processes

Question 249

Agreement Processes

Answer 249

Acquisition
Supply

Question 250

Organizational Project-Enabling Processes

Answer 250

our prince Leaves Monarchy In Frustration.
Please May Harry Ride Quickly Maybe Kissing Meghan.

LM Life Cycle Model Management
IF Infrastructure Management
PM Portfolio Management
HR Human Resource Management
QM Quality Management
KM Knowledge Management

Question 251

Technical Management Processes

Answer 251

Tech Managers Configure and PRIMP for Dairy Queen

CM Configuration Management
PL Project Planning
RM Risk Management
IM Information Management
MS Measurement
PA Project Assessment and Control
DM Decision Management
QA Quality Assurance

Question 252

Technical Processes

Answer 252

BAss SNeaks SR ARound
DEan SAys IP INsults
VEry TRicky VAlues OPen MAd DShield

Business or mission analysis (BA)
Stakeholders needs and requirements (SN)
System requirements definition (SR)
Architecture definition (AR)
Design definition (DE)
System Analysis (SA)
Implementation (IP)
Integration (IN)
Verification (VE)
Transition (TR)
Validation (VA)
Operation (OP)
Maintenance (MA)
Disposal (DS)

Question 253

Security Design Principles

Answer 253

Security Architecture and Design
Security Capability and Intrinsic Behavior
Life Cycle Security

Question 254

Security Architecture and Design

Answer 254

Clear Abstractions
Hierarchical Trust
Least Common Mechanisms
Inverse Modification Threshold
Modularity and Layering
Hierarchical Protection
Partially Ordered Dependencies
Minimized Security Elements
Efficiently Mediated Access
Least Privilege
Minimized Sharing
Predicate Permission
Reduced Complexity
Self-Reliant Trustworthiness
Secure Evolvability
Secure Distributed Composition
Trusted Components
Trusted Communication Channels

Question 255

Security Capability and Intrinsic Behavior

Answer 255

Continuous Protection
Secure Failure and Recovery
Secure Metadata Management
Economic Security
Self-Analysis
Performance Security
Accountability and Traceability
Human Factored Security
Secure Defaults
Acceptable Security

Question 256

Life Cycle Security

Answer 256

Repeatable and Documented Procedures
Secure System Modification
Procedural Rigor
Sufficient Documentation

Question 257

Identify
Develop viewpoints
Harmonize models, views, and secure function
Relate views to design
Select
Manage

Answer 257

ARchitecture definition

Question 258

Prepare
Establish characteristics for system element
Assess alternatives

Answer 258

DEsign definition

Question 259

Identify problem that requires analysis
Identify and validate assumptions of analysis
Record results of analysis

Answer 259

System Analysis

Question 260

Build or adapt system elements
Develop training materials
Record results and any anomalies
Maintain traceability

Answer 260

Implementation

Question 261

Identify training
Demonstrate achievement of security aspects
Commission for operation
Record security aspects of transition and anomalies encountered

Answer 261

Transition

Question 262

Define maintenance strategy
Review incident reports to identify maintenance needs
Implement restoration after failure
Identify when maintenance is required
Perform logistics support
Manage maintenance and logistics

Answer 262

MAintenance

Question 263

Initiation - Stakeholders Needs, Verification
Development/Acquisition - Architecture, Design, Verification
Implementation/Assessment - System Analysis, Implementation
Operations/Maintenance - Transition, Maintenance

Answer 263

800-64 to 800-160 map

Question 264

A1

Injection flaws, such as SQL, NoSQL, OS, and LDAP injection, occur when untrusted data is sent
to an interpreter as part of a command or query. The attacker’s hostile data can trick the
interpreter into executing unintended commands or accessing data without proper authorization.

Controls: Parameterize queries, Validate all inputs

Answer 264

Threat Injection

Question 265

A2

Application functions related to authentication and session management are often implemented
incorrectly, allowing attackers to compromise passwords, keys, or session tokens, or to exploit
other implementation flaws to assume other users’ identities temporarily or permanently.

Controls: Implement identity and authentication controls

Answer 265

Threat Broken Authentication

Question 266

A3

Many web applications and APIs do not properly protect sensitive data, such as financial,
healthcare, and PII. Attackers may steal or modify such weakly protected data to conduct credit
card fraud, identity theft, or other crimes. Sensitive data may be compromised without extra
protection, such as encryption at rest or in transit, and requires special precautions when
exchanged with the browser.

Controls: Implement appropriate access controls, Protect data, Encryption protection of sensitive data, Error and exception handling

Answer 266

Threat Sensitive Data Exposure

Question 267

A4

Many older or poorly configured XML processors evaluate external entity references within XML
documents. External entities can be used to disclose internal files using the file URI handler,
internal file shares, internal port scanning, remote code execution, and denial of service attacks.

Controls: Validate all inputs

Answer 267

Threat XML External Entities (XXE)

Question 268

A5

Restrictions on what authenticated users are allowed to do are often not properly enforced.
Attackers can exploit these flaws to access unauthorized functionality and/or data, such as access
other users’ accounts, view sensitive files, modify other users’ data, change access rights, etc.

Controls: Enforce access controls

Answer 268

Threat Broken Access Control

Question 269

A6

Security misconfiguration is the most commonly seen issue. This is commonly a result of insecure
default configurations, incomplete or ad hoc configurations, open cloud storage, misconfigured
HTTP headers, and verbose error messages containing sensitive information. Not only must all
operating systems, frameworks, libraries, and applications be securely configured, but they must
be patched and upgraded in a timely fashion.

Controls: Web server configuration hardening

Answer 269

Threat Security Misconfiguration

Question 270

A7

XSS flaws occur whenever an application includes untrusted data in a new web page without
proper validation or escaping, or updates an existing web page with user-supplied data using a
browser API that can create HTML or JavaScript. XSS allows attackers to execute scripts in the
victim’s browser which can hijack user sessions, deface web sites, or redirect the user to
malicious sites.

Controls: Encode data

Answer 270

Threat Cross Site Scripting (XSS)

Question 271

A8

Insecure deserialization often leads to remote code execution. Even if deserialization flaws do not
result in remote code execution, they can be used to perform attacks, including replay attacks,
injection attacks, and privilege escalation attacks.

Controls: Verify for security early and often

Answer 271

Threat Insecure Deserialization

Question 272

A9

Components, such as libraries, frameworks, and other software modules, run with the same
privileges as the application. If a vulnerable component is exploited, such an attack can facilitate
serious data loss or server takeover. Applications and APIs using components with known
vulnerabilities may undermine application defenses and enable various attacks and impacts.

Controls: Take advantage of security frameworks and libraries

Answer 272

Threat Using Components with Known Vulnerabilities

Question 273

A10

Insufficient logging and monitoring, coupled with missing or ineffective integration with incident
response, allows attackers to further attack systems, maintain persistence, pivot to more systems,
and tamper, extract, or destroy data. Most breach studies show time to detect a breach is over
200 days, typically detected by external parties rather than internal processes or monitoring.

Controls: Error and exception handling, Implement logging and intrusion detection

Answer 273

Threat Insufficient Logging and Monitoring

Question 274

Software configuration management (SCM) should primarily address which of the following questions?

Answer 274

What constitutes a software product at any point in time?

Question 275

The security-planning document developed in the development/acquisition phase of a system development life cycle contains what?

Answer 275

Configuration management plan
Contingency plan
Incident response plan
Plan of actions and milestones
System interconnection agreements
Security tests and evaluation results
Rules of behavior
Risk assessment
Security awareness and training plan

Question 276

Boundary-value analysis is conducted in which of the following phases of a system development life cycle (SDLC)?

Answer 276

Implementation

Question 277

Which of the following application settings used to prevent malware incidents will help stop phishing and spyware delivery?

Answer 277

Blocking Web browser pop-up windows
Filtering spam
Filtering website content

Question 278

In a distributed computing environment, replicated servers could have negative impact on what?

Answer 278

Scalability

Question 279

Which of the following security principle balances various variables such as cost, benefit, effort, value, time, tools, techniques, gain, loss, risks, and opportunities involved in a successful compromise of security features?

Answer 279

Work factor

Question 280

Which of the following is similar to security certification and accreditation?

Answer 280

Quality control

Question 281

What is true when dealing with security principles for securing an application environment?

Answer 281

Data-hiding techniques should be practiced during program testing and software maintenance.
Design for protection mechanisms should be simple and small in size.
Information security functions should be isolated from non-security functions.

Question 282

Big bang software application testing approach

Answer 282

a testing approach where all the individual components or modules of a software application are tested together, often in a single, comprehensive testing phase. Unlike other testing methods that involve incremental integration and testing of components, Big Bang Testing focuses on evaluating the entire system’s functionality as a whole.

This approach is typically employed after the individual units or modules have undergone unit testing. Once these units are ready for integration, they are combined in a “big bang,” and testing is carried out on the complete system.

Question 283

Finite State Machines are used in what phase?

Answer 283

Initiation