Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

Software-security > secure programming > Flashcards

secure programming Flashcards

1
Q

what is STRIDE?

A
  • Spoofing of user identity
  • Tampering of data
  • Repudiation of actions
  • Information disclosure
  • Denial of service
  • Elevation of privilege
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

how can you prevent malicious input?

A
  • ensure input can only be created +modified by trusted parties
  • Authenticate source
  • Control access to source
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

how can you detect malicious input?

A
  • Format
  • verify properties of input
  • check sums, access log files
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

how should you react to maicious input?

A
  • refuse, block
  • alert, notify
  • log, shut down
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is defensive programming?

A

always validate input
-size, format, sequence, integrity, authenticity
anticipate failures and handle them

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is a trusted path?

A

A mechanism by which a person at a terminal can communicate directly with the Trusted Computing Base.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

Software-security (6 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions