Certified Secure Software Lifecycle Professional (CSSLP) Quiz Questions and Answers

Multi-factor authentication is most closely related to which of the following security design principles?

Answer :
  • Defense in depth

An instrument that is used to communicate and mandate organizational and management goals and objectives at a high level is a________.

Answer :
  • policy

The use of an individual’s physical characteristics, such as retinal blood patterns and fingerprints, for validating and verifying the user’s identity is referred to as_______.

Answer :
  • biometric authentication

Requirements that, when implemented, can help to build a history of events that occurred in the software are known as________.

Answer :
  • accountability requirements

Certificate Authority, Registration Authority, and Certificate Revocation Lists are all part of which of the following?

Answer :
  • Public Key Infrastructure (PKI)

When passwords are stored in the database, the best defence against disclosure attacks can be accomplished using________.

Answer :
  • hashing

The primary reason for designing Single Sign On (SSO) capabilities is to________.

Answer :
  • simplify user authentication

Assembly and machine language are examples of_________.

Answer :
  • low-level language

Impersonation attacks such as Man-in-the-Middle (MITM) attacks in an Internet application can be BEST mitigated using proper_________.

Answer :
  • Session Management

The use of IF-THEN rules is characteristic of which of the following types of software testing?

Answer :
  • Logic