Free Trial

Safari Books Online is a digital library providing on-demand subscription access to thousands of learning resources.

  • Create BookmarkCreate Bookmark
  • Create Note or TagCreate Note or Tag
  • PrintPrint
Share this Page URL
Help

Chapter Four. Domain 4.0: Application, D... > Answers and Explanations

Answers and Explanations

Objective 4.1: Explain the importance of application security.

1. Answer: A. In some closed application instances, fuzzing may be the only means of reviewing the security quality of the program. Answer B is incorrect because cross-site scripting (XXS) vulnerabilities can be used to hijack the user’s session or to cause the user accessing malware-tainted Site A to unknowingly attack Site B on behalf of the attacker who planted code on Site A. C is incorrect because input validation tests whether an application properly handles input from a source outside the application destined for internal processing. Answer D is incorrect because Cross-site Request Forgery (XSRF) is an attack in which the end user executes unwanted actions on a web application while the user is currently authenticated.


  

You are currently reading a PREVIEW of this book.

                                                                                                                    

Get instant access to over $1 million worth of books and videos.

  

Start a Free Trial


  
  • Safari Books Online
  • Create BookmarkCreate Bookmark
  • Create Note or TagCreate Note or Tag
  • PrintPrint