Secure Software Design and Development MCQs with Answers

Semester Exam Secure Software Design and Development InternationalMedium

In secure software design and development, what is meant by SABSA?

A. a business-driven enterprise security architecture framework B. a packet sniffer only C. a polymorphic virus D. a text editor

Correct Answer: A. a business-driven enterprise security architecture framework

Semester Exam Secure Software Design and Development InternationalMedium

For a semester exam, which option is correct about FIPS?

A. a web browser extension B. U.S. federal information processing standards for approved security and information processing requirements C. a password cracking tool D. a database diagram notation

Correct Answer: B. U.S. federal information processing standards for approved security and information processing requirements

Semester Exam Secure Software Design and Development InternationalMedium

In secure software design and development, what is meant by STRIDE?

A. a UI wireframe method B. a password hashing algorithm C. a threat modeling approach based on spoofing, tampering, repudiation, information disclosure, denial of service and elevation of privilege D. a database transaction model

Correct Answer: C. a threat modeling approach based on spoofing, tampering, repudiation, information disclosure, denial of service and elevation of privilege

Semester Exam Secure Software Design and Development InternationalMedium

Which statement best describes the purpose of SABSA?

A. a packet sniffer only B. a polymorphic virus C. a text editor D. a business-driven enterprise security architecture framework

Correct Answer: D. a business-driven enterprise security architecture framework

Semester Exam Secure Software Design and Development InternationalEasy

In secure software design and development, what is meant by OWASP development guide?

A. a graphic design manual B. a financial accounting standard C. a game development engine D. guidance for building secure web applications during development

Correct Answer: D. guidance for building secure web applications during development

Semester Exam Secure Software Design and Development InternationalMedium

Which statement best describes the purpose of STRIDE?

A. a UI wireframe method B. a database transaction model C. a password hashing algorithm D. a threat modeling approach based on spoofing, tampering, repudiation, information disclosure, denial of service and elevation of privilege

Correct Answer: D. a threat modeling approach based on spoofing, tampering, repudiation, information disclosure, denial of service and elevation of privilege

Semester Exam Secure Software Design and Development InternationalMedium

For a semester exam, which option is correct about SABSA?

A. a text editor B. a business-driven enterprise security architecture framework C. a packet sniffer only D. a polymorphic virus

Correct Answer: B. a business-driven enterprise security architecture framework

Semester Exam Secure Software Design and Development InternationalEasy

Which statement best describes the purpose of OWASP development guide?

A. a graphic design manual B. a game development engine C. guidance for building secure web applications during development D. a financial accounting standard

Correct Answer: C. guidance for building secure web applications during development

Semester Exam Secure Software Design and Development InternationalMedium

For a semester exam, which option is correct about STRIDE?

A. a threat modeling approach based on spoofing, tampering, repudiation, information disclosure, denial of service and elevation of privilege B. a password hashing algorithm C. a UI wireframe method D. a database transaction model

Correct Answer: A. a threat modeling approach based on spoofing, tampering, repudiation, information disclosure, denial of service and elevation of privilege

Semester Exam Secure Software Design and Development InternationalEasy

In secure software design and development, what is meant by privacy regulation?

A. screen resolution guidelines B. legal and policy requirements controlling collection, processing and protection of personal data C. rules for choosing icons only D. compiler warning messages

Correct Answer: B. legal and policy requirements controlling collection, processing and protection of personal data

Semester Exam Secure Software Design and Development InternationalEasy

For a semester exam, which option is correct about OWASP development guide?

A. a financial accounting standard B. guidance for building secure web applications during development C. a graphic design manual D. a game development engine

Correct Answer: B. guidance for building secure web applications during development

Semester Exam Secure Software Design and Development InternationalMedium

In secure software design and development, what is meant by DREAD?

A. a software license type B. an encryption cipher C. a cloud deployment region D. a risk rating method considering damage, reproducibility, exploitability, affected users and discoverability

Correct Answer: D. a risk rating method considering damage, reproducibility, exploitability, affected users and discoverability