The following are best practices for ensuring software is both secure and resilient except: A) Start SwA activities early and continue to improve throughout the program B) consider cybersecurity protections at start of software development C) software developers should obtain training to understand the fundamental components of secure coding D) Exclude software assurance activities since they are more complex
Added by Dana A.
Step 1
A) Start SwA activities early and continue to improve throughout the program - This option suggests that starting security activities early and continuously improving them is a good practice for ensuring software security and resilience. B) Consider Show more…
Show all steps
Your feedback will help us improve your experience
Akash M and 93 other AP CS educators are ready to help you.
Ask a new question
Labs
Want to see this concept in action?
Explore this concept interactively to see how it behaves as you change inputs.
Key Concepts
Recommended Videos
A new development team should review and analyze the following topics. Choose all that apply: A. SSDF B. Microsoft Development Life Cycle C. Agile D. DevOps E. None. 2. What items will help to reduce cost? Choose all that apply: A. Secure SDLC B. DevOps C. SDLC D. SSDF. 3. What recent news is tied to vulnerability in software? Choose all that apply: A. Executive Order 14028 B. Solarwinds C. Colonial Pipeline D. Items A and C E. None. 4. Which items are considered security practices for the Secure Software Development Framework (SSDF)? Choose all that apply: A. Operating System Updates B. Implement Roles and Responsibilities C. Analyze Vulnerabilities to Identify Their Root Causes D. All of the above E. Items A and C. 5. Which items are considered security practices for the Microsoft Development Life Cycle? Choose all that apply: A. Penetration testing B. Incident Response Plan C. Cloud Backups D. Perform Threat modeling E. Patching F. A, B, and C. 6. Select all the development methodologies that can be used for faster development time. Choose all that apply: A. DevOps B. Waterfall C. RAD D. Agile E. All of the above.
Akash M.
which of the following are benefits of continuous integration? A) shift left of quality of code B) shift left of quality assurance activities C) shift left of security via secure coding practices
Amman Z.
1. Agile Threat Modeling demands that you make sure your threat model fully depicts every single possible threat. • A. True • B. False 2. What type of regulation is this? Software platforms and applications within the organization are inventoried. • A. Rules-Based • B. Outcome-Based 3. Security Checklists like the DISA STIGs and CIS help: ☐ A. Prevent the recurrence of commonly missed security issues ☐ B. Identify advanced persistent threats. ☐ C. Address threats not previously discovered. ☐ D. Avoid a narrow set of modeled threats. 4.. The user name and password for the database connection is embedded in clear text in the source code. Which threat(s) exists in this situation. ☐ A. Elevation of Privilege ☐ B. Information Disclosure ☐ C. Spoofing ☐ D. Tampering 5. Preventive controls are designed to warn the potential attacker away from attacking. • True • False 6. Select the attack surfaces that are relevant to assessing threats to your systems: ☐ A. Every possible way that data and commands are processed by your system. ☐ B. News media ☐ C. Every network endpoint on the network. ☐ D. People that designed, built, operate and support the system. 7. The developers of your new healthcare medical records up spun up the development infrastructure (web server, etc.) in Amazon Web Services. They ran penetration tests against the web application. No other security review of AWS infrastructure is necessary. • A. True • B. False 8. If a software vulnerability cannot be patched, one way to mitigate the risk is to harden the systems using a secure configuration standard or checklist. • A. True • B. False
Recommended Textbooks
Computer Science and Information Technology
Introduction to Programming Using Python
Computer Science - An Overview
Transcript
18,000,000+
Students on Numerade
Trusted by students at 8,000+ universities
Watch the video solution with this free unlock.
EMAIL
PASSWORD