Which of the following BEST describes a buffer overflow?

• A.A program contains a hidden and unintended function that presents a security risk.
• B.A type of covert channel that captures data.
• C.Malicious code designed to interfere with normal operations.
• D.A function is carried out with more data than the function can handle.

Comment: *

Name: *

Email: *

Verification: *

Which of the following should be in place before a black box penetration test begins?

• A.IT management approval
• B.Proper communication and awareness training
• C.A clearly stated definition of scope
• D.An incident response plan

Comment: *

Name: *

Email: *

Verification: *

When developing a new application, which of the following is the BEST approach to ensure compliance with security requirements?

• A.Provide security training for developers.
• B.Prepare detailed acceptance criteria.
• C.Adhere to change management processes.
• D.Perform a security gap analysis.

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the MOST appropriate method to protect a password that opens a confidential file?

• A.Delivery path tracing
• B.Reverse lookup translation
• C.Out-of-band channels
• D.Digital signatures

Comment: *

Name: *

Email: *

Verification: *

When contracting with an outsourcer to provide security administration, the MOST important contractual element is the:

• A.right-to-terminate clause.
• B.limitations of liability.
• C.service level agreement (SLA).
• D.financial penalties clause.

Comment: *

Name: *

Email: *

Verification: *