Domain 8: Software Development Security

Question 1

Types of programming languages

Answer 1

1. Interpreted Languages: such as Python, R, and Javascript. This is where the source code itself is distributed and the interpreter executes the source code on their system.
2. Compiled Languages: Such as C and Java, they must be compiled before use in an executable

Question 2

Key phases of SDLC

Answer 2

5 Key Phases:

1. Initiation
2. Development/acquisition
3. Implementation/assessment
4. Operation/maintenance
5. Disposal

Question 3

What is initiation (SDLC)?

Answer 3

Process of determining feasibility, cost, risk analysis, getting management approval, and establishing basic security objectives

Question 4

What is development/acquisition phase (SDLC)?

Answer 4

Define security architecture, perform risk assessment, determine initial security controls and countermeasures, and document security controls and concept of operations

Question 5

What is implementation/assessment (SDLC)?

Answer 5

Test, evaluate and deploy the new system into operations. This includes performing a security assessment to determine security posture, implementing corrective actions to weak security controls, and getting certification and accreditation for the new system.

Question 6

What is the software development life cycle? (conceptually)

Answer 6

A process designed for the planning, creating, testing, and deploying of an information system.

Question 7

What is operations/maintenance phase (SDLC)?

Answer 7

System maintenance, includes readiness review to ensure everything is ready to go. Also focuses on configuration management and change control.

Question 8

What is disposal phase (SDLC)?

Answer 8

System is decommissioned or taken out of operations for termination, upgrade, or replacement. Focus is on the planning for the transfer, protection, or proper destruction of documentation, hardware, and/or software.

Question 9

Three key phases of Change Management process?

Answer 9

1. Request control,
2. Change control
3. Release control

Question 10

Explain Request Control

Answer 10

Provides an organisation framework within which users can request modifications, managers can conduct cost/benefit analysis, and developers can prioritise tasks

Question 11

Explain Change Control (Change Management)

Answer 11

Provides an organised framework within which multiple developers can create and test a solution prior to rolling it out into a production environment.

Question 12

Explain Release Control (Change Management)

Answer 12

Once the changes are finalised, they must be approved for release through the release control procedure. Focus is on removing programming aides (such as back doors) and ensure acceptance testing is performed before release.

Question 13

What is the purpose of the Configuration Management Process?

Answer 13

Used to control the version(s) of software used throughout an organisation and formally track and control changes.

Question 14

Define Configuration Identification (Configuration Management process)

Answer 14

Administrators document the configuration of covered software products throughout the organisation

Question 15

Define Configuration Control (Configuration Management process)

Answer 15

Ensures that changes to software versions are made in accordance with the change control and configuration management policies. Updates can be made only from authorised distributions in accordance with these policies.

Question 16

Configuration Status Accounting

Answer 16

Formalised procedures are used to keep track of all authorised changes that take place.

Question 17

What is a Configuration Audit?

Answer 17

Periodic configuration audit should be conducted to ensure that the actual production environment is consistent with the accounting records and that no unauthorised configuration changes have taken place.

Question 18

Define Software Capability Maturity Model (SW CMM)

Answer 18

It is a 5 level software development maturity model that describes procedures, principles, and practices that underlie software development process maturity.

Question 19

Define 5 levels of SW CMM

Answer 19

1. Initiating: competent people, informal processes, ad-hoc, absence of formal process
2. Repeatable: project management processes, basic life-cycle management processes
3. Defined - engineering processes, presence of basic life-cycle management processes and reuse of code, use of requirements management, software project planning, quality assurance, configuration management practices.
4. Managed: product and process improvement, quantitatively controlled
5. Optimising: continuous process improvement works with an IDEAL model

Question 20

Define IDEAL model

Answer 20

Organizational improvement tool/model, including:
I: Initiate, begin effort. Outline business reasons behind change, support is built for the initiative, and the appropriate infrastructure is put in place.
D: Diagnose, perform assessment of current state and make recommendations.
E: Establish an action plan
A: Implement action plan, including develops solutions and then tests, refines, and implements them.
L: Leverage assessments, and continuously improve

Question 21

Define Gantt Chart and PERT

Answer 21

Gantt Charts are a bar chart for project planning timings (including when things are planned to happen). While, PERT is Program Evaluation Review Technique for project scheduling used to judge the size of a software product in development and calculate the standard deviation (SD) for risk assessment. PERT is used to direct improvements to project management and software coding in order to produce more efficient software.

Question 22

Define DevOps

Answer 22

An approach which aims to resolve issues by bringing the three functions of Software Development, Quality Assurance, and IT Operations together. It is not focused on security.

Question 23

Types of Software Development Models

Answer 23

1. Simplistic: model of continual steps in order
2. Waterfall: System Requirements –> Software Requirements –> Analysis –> Program Design –> Coding –> Testing –> Operations and Maintenance
3. Waterfall including Validation and Verification (V&V):. Validation = doing the right job, and verification=doing the job right. This model allows the validation and verification of software at all levels during production.
4. Spiral Model: Encapsulates a number of iterations of the Waterfall model, including, determining objectives, alternatives, and constraints –> evaluate alternatives, identify and resolve risks –> plan next phases –> and develop and verify next-level product.
5. Cleanroom: write code correctly first time, quality through design

Question 24

Agile Software Development

Answer 24

It is an approach to delivering software, with working software being a primary measure of success

Question 25

Define database

Answer 25

General mechanism for defining, storing and manipulating data without writing specific programs

Question 26

DBMS

Answer 26

Database Management System, is a suite of software programs that maintains and provides controlled access to data components stored in rows and columns of a table

Question 27

Types of databases

Answer 27

Hierarchical= tree (sons with only one parent), one to many relationship
Network=tree (all interconnected)
Relational= one-to-one relationships, has has tuples and attributes (rows and columns)

Question 28

DDL and DML

Answer 28

DDL=Data definition language which defines strucutre and schema
DML=Data Manipultion Manguage: view, manipulate, and use the database via VIEW, ADD, MODIFY, SORT, and DELETE commands

Question 29

Degree of DB

Answer 29

Number of attributes (columns) in table

Question 30

Tuple

Answer 30

Row or record

Question 31

DDE

Answer 31

Dynamic Data Exchange: enables applications to work in a client/server model by providing the inter-process communications mechanism (IPC)

Question 32

DCL

Answer 32

Data control language: subset of SQL used to control access to data in a database, using GRANT and REVOKE statements

Question 33

Semantic integrity

Answer 33

Makes sure that the structural and semantic rules are enforced on all data types, logical values that could adversely affect the structure of the database. Only allows allowable data to be entered into a row.

Question 34

Referential integrity

Answer 34

All foreign keys reference existing primary keys

Question 35

Candidate Key

Answer 35

An attribute (column) that is a unique identifier, that could be chosen to be a primary key

Question 36

Primary Key

Answer 36

A unique attribute to identify a record in a database.

Question 37

Foreign Key

Answer 37

Represents a record in another table

Question 38

Main components of DB

Answer 38

Schemas (blueprints), tables, and views

Question 39

Incorrect summaries

Answer 39

When one transaction is using an aggregate function to summarise data stored in a DB while a second transaction is making modifications to a DB

Question 40

Dirty reads

Answer 40

When one transactions reads a value from a DB that was written by another transaction that did not commit

Question 41

Lost updates

Answer 41

When one transaction writes a value to the DB that overwrites a value needed by transactions that have earlier precedence

Question 42

Dynamic Lifetime Objects

Answer 42

Objects created on the fly by software in a OOP environment. An object is preassembled code that is a self-contained module.

Question 43

ODBC

Answer 43

Open database connectivity is a DB feature that allows applications to communicate with different types of DBs without having to be directly programmed for interaction with each type. ODBC acts as a proxy

Question 44

Multilevel security

Answer 44

Keeping data with different security requirements separate

Question 45

Database contamination

Answer 45

Mixing data with different classification levels andor need to know requirements and is a significant challenge.

Question 46

Database partitioning

Answer 46

process of splitting a single database into multiple parts, each with a unique and distinct security level or type of content

Question 47

Polyinstantiation

Answer 47

Occurs when two or more rows in the same relational database table appear to have identical primary key elements but contain different data for use at differing classification levels. it is often used as a defense against inference attacks

Question 48

What is the ACID Model? (conceptually)

Answer 48

Critical database theory model to create reliable databases

Question 49

Atomicity

Answer 49

Database transactions must be atomic - they must be an ‘all or nothing’ affair. If any part of the transaction fails, the entire transaction must be rolled back as if it never occurred.

Question 50

Consistency

Answer 50

All transactions must begin operating in an environment tht is consistent with all of the database’s rules (for example, all records must have a unique primary key).

Question 51

Isolation

Answer 51

Transactions operate separately from each other, in order.

Question 52

Durability

Answer 52

Database transactions must be durable, once they are committed to the database, they must be preserved, such as through the use of backups

Question 53

Expert Systems: Knowledge Management

Answer 53

Embody accumulated knowledge of experts on a particular subject and apply it in a consistent fashion to enter decisions. Expert system = inference engine + knowledge base - degree of uncertainty

Question 54

Two components of expert system

Answer 54

Knowledge base and inference engine

Question 55

Knowledge base

Answer 55

Set of rules such as if-then statements

Question 56

Inference system

Answer 56

Analyses information in the knowledge base to arrive at the appropriate decision.

Question 57

Two modes of expert systems

Answer 57

Forward Chaining: acquires info and comes to a conclusion

Backward Chaining: backtracks to determine IF a hypothesis is correct

Question 58

Neural Networks

Answer 58

Use complex computations to replace partial functions of the human mind and works with weighted inputs. Single Layer = only one level of summoning codes
Multi Layer = more levels of summoning codes

Question 59

Programming Languages Generations

Answer 59

5 Generations, including:

1. Include all machine languages
2. Include all assembly languages
3. Include all compiled languages
4. Attempt to approximate natural languages and include SQL, for DBs
5. Allow programmers to create code using visual interfaces.

Question 60

Programming Languages tools

Answer 60

Compiler: translates higher level program into an executable file
Interpreter: reads higher level code, one line at the time to produce machine instructions
Assembler: converts machine-code into binary machine instructions.

Question 61

Object oriented security

Answer 61

Behave as a black box, as they are encapsulated to perform an action. Can be substituted if they have compatible operations. it can store objects like video and pictures

Question 62

Encapsulation for Software development

Answer 62

Only data it needs, no accidental access to data

Question 63

Message

Answer 63

Communication to object to perform an action

Question 64

Method

Answer 64

Code that defines an action an object performs in response to a message

Question 65

Behaviour

Answer 65

Results exhibited by an object in response to a message

Question 66

Class

Answer 66

Collection of methods that defines the behaviour of objects

Question 67

Instance

Answer 67

Objects are instances of classes that contain their methods

Question 68

Inheritance

Answer 68

Allows a subclass to access methods belonging to a superclass

Question 69

Polymorphism

Answer 69

Objects of many different classes that are related by some common super class. When different subclasses may have different methods using the same interfaces that respond differently

Question 70

Object Orientation: Requirements Analysis (OORA)

Answer 70

Defines classes of objects and their interactions

Question 71

OOA, Analysis

Answer 71

Understanding and modelling a particular problem Domain Analysis (DA) seeks to identify classes and objects that are common to all applications in a domain

Question 72

OOD, Design

Answer 72

Objects are the basic units, and instances of classes

Question 73

OOP, Programming

Answer 73

Employment of objects and methods. If class = airplane, objects like fighter plane, cargo plane, passenger plane can be created. Method would be what a plane would do with a message like: climb, dive, and roll.

Question 74

Object Request Brokers

Answer 74

Middlewear that acts as locators and distributors of the objects acros networks

Question 75

CORBA: Standard

Answer 75

Broker architecture enables programmes wittten in different languages and using different platforms and OS’s through Interface Definition Languae

Question 76

Common Object Model

Answer 76

Support exchange of objects amongst programs. This used to be called OLE. DCOM is the network variant.

Question 77

Conclusion

Answer 77

Object Orientation supports reuse of objects and reduces development risk, natural in its representation of real world entities

Question 78

Cohesion

Answer 78

Ability to perform without use of other programs, strength of the relationship between the purposes of methods within the same class

Question 79

High cohesion

Answer 79

Without use of other modules

Question 80

Low cohesion

Answer 80

Must interact with other modules

Question 81

Coupling

Answer 81

Effect on other modules. Level of interaction between objects

Question 82

High coupling

Answer 82

Module largely affects many more modules

Question 83

Low coupling

Answer 83

Doesnt affect many other modules

Question 84

Abstraction

Answer 84

Fundamental principle of OOP. Users of an object (or OS component) doesnt necessarily need to know the details of how the object works; they need to know just the proper syntax for using the object and the type of data that will be returned as a result

Question 85

Seperation of privilege

Answer 85

Builds on principle of least privilege. Requires the use of granular access permissions; that is, different permissions for each type of privileged operation. Allows admins to do certain privileged functions, without complete access to system.

Question 86

Process isolation

Answer 86

Requires that the OS provide separate memory spaces for each process’s instructions and data. It also requires that the OS enforce those boundaries, preventing one process from reading or writing data that belongs to another process. This prevents unauthorised data access, and protects the integrity of processes.

Question 87

Layering processes

Answer 87

Implementstrucutre similar to the ring model

Question 88

Hardware segmentation

Answer 88

Similar to process isolation, by seperating physical hardware

Question 89

Covert Channels

Answer 89

A way to receive information in an unauthorised manner, information flood that is not protected by a security mechanism.

Question 90

2 Types of Covert Channels

Answer 90

1. Storage Covert Channel: Processes communicate via storage space on the system. For example, writing to storage by one process and reading by another of lower security level.
2. Covert Timing Channel: One process relays to another by modulating its use of system resources. Typing rhythm of Morse Code is an example.

Question 91

Mobile Code: Java

Answer 91

Sandboxes, no warnings, programs are compiled to bytecode

Question 92

Mobile Code: ActiveX

Answer 92

Authenticode, relies on digital signatures, annoying dialogs people click away

Question 93

Malicious Code; Virus

Answer 93

Inserts or atteches itself to file, and is spread through infected media

Question 94

Worm

Answer 94

Reproduces on its own without user action

Question 95

Logic Bomb/Code bomb

Answer 95

Executes when a certain event happens (like accessing a bank account or employee being fired) or a data/time occurs

Question 96

Trojan Horse

Answer 96

Program disguised as a useful program/tool

Question 97

Hoaxes

Answer 97

False warnings like

Question 98

Remote Access Trojan (RAT)

Answer 98

Remote control programs that have the malicious code and allow for unauthorised remote access, back orifice, sub even, net bus

Question 99

Buffer Overflow

Answer 99

Excessive information provided to a memory buffer without appropriate bounds checking which can result in an elevation of privilege. if executable code is loaded into the overflow, it will be run as if it were the program. . Must be corrected in code

Question 100

Backdoor

Answer 100

Program installed by an attacker to enable him to come back at a later date without going through proper authorisation channels, maintenance hook for developers

Question 101

Countermeasures

Answer 101

EAL6 systems have less than EAL3 systems because covert channels are normally a flaw in design

Question 102

LOKI

Answer 102

Tool used for covert channel that writes data directly after the ICMP header.

Question 103

Botnet

Answer 103

Thousands of zombie computers

Question 104

Directory Traversal Attack

Answer 104

Attacker attempts to force the web application to navigate up the file hierarchy and retrieve a file that should not normally be provided to a web user.

Question 105

Macro virus

Answer 105

Most common in office productivity documents, .doc/.docx.

Question 106

Trojans

Answer 106

Pretends to do one thing, while performing another

Question 107

MDM

Answer 107

Software solution to manage the myriad mobile devices that employees use to access company resources. The goals of MDM are to improve security, provide monitoring, enable remote management, and support troubleshooting.

Question 108

Collisions

Answer 108

Two different files produce the same result from a hashing operation

Question 109

Boot sector

Answer 109

Moves or overwrites the boot sector with the virus code

Question 110

System infector

Answer 110

Infects BIOS command, or other system files. It is often a memory resident virus

Question 111

Phlashing

Answer 111

Malicious variation of official BIOS or firmware is installed that introduces remote control or other malicious features into a device

Question 112

Compression

Answer 112

Append to executables

Question 113

Companion Virus

Answer 113

Specific type of virus where the infected code is stored not in the host program, but in a separate ‘companion files’

Question 114

Stealth Virus

Answer 114

Hides modification to files or boot records and itself

Question 115

Multipart virus

Answer 115

Infects both boot sector and executable files, becomes resident first in memory and then infects the boot sector and finally the entire system, uses two or more propagation mechanisms

Question 116

Self-garbling virus

Answer 116

Attempts to hide by garbling its code; as it spreads, it changes the way its code is encoded

Question 117

Polymorphic virus

Answer 117

Self garbling virus that changes its pattern each time it spreads

Question 118

Macro virus

Answer 118

Usually written in Word Basic, VBScript and used with MS Office

Question 119

Resident virus

Answer 119

Virus that loads when a program loads in memory

Question 120

Resident virus

Answer 120

Virus that loads when a program loads in memory

Question 121

Master Boot Record

Answer 121

MBR virus attacks the MBR, and virus is stored on another part of memory that is loaded at boot-up

Question 122

Non-resident virus

Answer 122

Attached to .exe

Question 123

Signature Based Anti Virus

Answer 123

Cannot detect new malware, relies on knowledge of existing malware

Question 124

Heuristic behaviour based Anti Virus

Answer 124

Can detect behavior of misbehaving files

Question 125

Protected Domain

Answer 125

Execution and memory space assigned to each process

Question 126

Trusted Computer Base

Answer 126

Combination of protection systems within a computer system, which includes the hardware, software and firmware that are trusted to enforce the security policy

Question 127

Security Kernel

Answer 127

Hardware, software, firmware, elements of TCB that implement the reference monitor concept - must be isolated from reference monitor

Question 128

Reference Monitor

Answer 128

Isolation, completeness and verifiability, that compares the security labels of subjects and objects

Question 129

Multistate systems

Answer 129

Capable of implementing a much higher level of security. These systems are certified to handle multiple security levels simultaneously by using specialised mechanisms.

Question 130

Protection Rings

Answer 130

4 Protection Rings
Ring 0: OS Kernel. Kernel manages the HW and supplies fundamental services that the HW does not provide.
Ring 1: Remaining parts of OS
Ring 2: I/O drivers and utilities
Ring 3: Applications and programs
Layers 1 and 2 contain device drivers but are not normally implemented in practice. Layer 3 contains user applications. Layer 4 does not exist.

Question 131

CSRF (XSRF)

Answer 131

Cross Site Request Forgery, attacks exploit the trust that sites have in a user’s browser by attempting to force the submission of authenticated request to third party sites

Question 132

Cross Site Scripting

Answer 132

Uses reflected input to trick a user’s browser into executing untrusted code from a trusted site

Question 133

Session Hijacking

Answer 133

Attempt to steal previously authenticated sessions but do not force the browser to submit request

Question 134

SQL injection

Answer 134

Directly attacks a DB through a web app

Question 135

BSOD

Answer 135

When Windows crashes into a dangerous failure and enters a full secure state (reboot)

Question 136

Patch management system

Answer 136

Prevents outages from known attacks by ensuring systems are patched. Patches aren’t available for new attacks

Question 137

Threat modelling

Answer 137

Reduces the number of security related design and coding flaws, reduce severity of non-security related flaws, not to reduce number of threat vectors

Question 138

Open system

Answer 138

One with published APIs that allow third parties to develop products to interact with it

Question 139

Closed system

Answer 139

One that is propeitary with no third-party product support, does not define if its code can be viewed

Question 140

Open source

Answer 140

Coding stance that allows others to view the source code of a program, distributed free or for a fee

Question 141

Closed source

Answer 141

Is an opposing coding stance that keeps source code confidential. Can be reverse engineered or decompiled

Question 142

Verification

Answer 142

Evaluates the product against specifications

Question 143

Validation

Answer 143

Evaluates how well the product satisfies real-world requirements