Secure Software Design and Development MCQs with Answers

Semester Exam Secure Software Design and Development InternationalEasy

In secure software design and development, what is meant by secure defaults?

A. allowing anonymous admin login B. configuring software to be safe unless intentionally changed C. disabling encryption by default D. shipping with default admin/admin

Correct Answer: B. configuring software to be safe unless intentionally changed

Semester Exam Secure Software Design and Development InternationalEasy

Which statement best describes the purpose of design process?

A. random coding without planning B. an organized sequence for translating requirements into architecture and detailed design C. testing after deletion D. publishing unreviewed code

Correct Answer: B. an organized sequence for translating requirements into architecture and detailed design

Semester Exam Secure Software Design and Development InternationalMedium

For a semester exam, which option is correct about Clark-Wilson model?

A. an integrity model based on well-formed transactions and separation of duties B. a network routing protocol C. a confidentiality-only model D. a browser caching rule

Correct Answer: A. an integrity model based on well-formed transactions and separation of duties

Semester Exam Secure Software Design and Development InternationalEasy

In secure software design and development, what is meant by non-functional security requirement?

A. a decorative image B. a random table name C. a single print command D. a required security quality such as availability, resilience or auditability

Correct Answer: D. a required security quality such as availability, resilience or auditability

Semester Exam Secure Software Design and Development InternationalEasy

Which statement best describes the purpose of secure defaults?

A. disabling encryption by default B. shipping with default admin/admin C. allowing anonymous admin login D. configuring software to be safe unless intentionally changed

Correct Answer: D. configuring software to be safe unless intentionally changed

Semester Exam Secure Software Design and Development InternationalEasy

For a semester exam, which option is correct about design process?

A. testing after deletion B. publishing unreviewed code C. an organized sequence for translating requirements into architecture and detailed design D. random coding without planning

Correct Answer: C. an organized sequence for translating requirements into architecture and detailed design

Semester Exam Secure Software Design and Development InternationalHard

In secure software design and development, what is meant by Access Triple in Clark-Wilson?

A. font, color and size B. IP address, port and cable C. username, browser and monitor D. subject, program and object relationships that control authorized transformations

Correct Answer: D. subject, program and object relationships that control authorized transformations

Semester Exam Secure Software Design and Development InternationalEasy

Which statement best describes the purpose of non-functional security requirement?

A. a required security quality such as availability, resilience or auditability B. a decorative image C. a random table name D. a single print command

Correct Answer: A. a required security quality such as availability, resilience or auditability

Semester Exam Secure Software Design and Development InternationalEasy

For a semester exam, which option is correct about secure defaults?

A. disabling encryption by default B. allowing anonymous admin login C. shipping with default admin/admin D. configuring software to be safe unless intentionally changed

Correct Answer: D. configuring software to be safe unless intentionally changed

Semester Exam Secure Software Design and Development InternationalEasy

In secure software design and development, what is meant by software development methodology?

A. a structured approach such as agile, waterfall or iterative development B. a malware signature only C. a CPU instruction set only D. a firewall brand

Correct Answer: A. a structured approach such as agile, waterfall or iterative development

Semester Exam Secure Software Design and Development InternationalMedium

Which statement best describes the purpose of FIPS?

A. a web browser extension B. a database diagram notation C. a password cracking tool D. U.S. federal information processing standards for approved security and information processing requirements

Correct Answer: D. U.S. federal information processing standards for approved security and information processing requirements

Semester Exam Secure Software Design and Development InternationalMedium

For a semester exam, which option is correct about OCTAVE?

A. a file compression format B. a compiler optimization flag C. a risk-based method focused on operationally critical threats, assets and vulnerabilities D. a CSS framework

Correct Answer: C. a risk-based method focused on operationally critical threats, assets and vulnerabilities