Question

1 Approved Answer

Posted on Sep 26, 2024

Question 1 (6 points) Listen The network team of your organization has just sent out a notification that denial-of- service attacks are on the rise.

image text in transcribed

Question 1 (6 points) Listen The network team of your organization has just sent out a notification that denial-of- service attacks are on the rise. As the developer, you are tasked with ensuring the program code could not be used to cause excessive resource utilization during a denial-of-service attack. One suggestion from the security team is to implement the Execute Around Method pattern for Java. Using the Vulnerability Assessment Process Flow diagram, identify which of the seven areas of security best apply to the scenario above. Select all that apply. Input Validation: Secure input and representations APls: Secure API interactions Cryptography: Encryption use and vulnerabilities Client/Server: Secure distributed computing Code Error: Secure error handling Code Quality: Secure coding practice/patterns Encapsulation: Secure data structures Question 2 (6 points) Listen As one developer on a team of several developers of a large web application using the Spring framework, you are tasked with implementing an expressive command input function for the application. You are told the team is using version 2.6.5 of the Spring framework, and you want to use the Spring Expression Language to accomplish your task. Using the Vulnerability Assessment Process Flow diagram, identify which of the seven areas of security best apply to the scenario above. Select all that apply. Input Validation: Secure input and representations APls: Secure API interactions Cryptography: Encryption use and vulnerabilities Client/Server: Secure distributed computing Code Error: Secure error handling Code Quality: Secure coding practice/patterns Encapsulation: Secure data structures Question 3 (6 points) Listen As the developer for a several tier web application, you are tasked with development of a Java class for accessing the relational database layer using Transport Layer Security, a new version of Secure Sockets Layer (SSL). The class functionality needs to support several database connections with different authentication IDs. If the database authentication fails, the system needs to be notified. Using the Vulnerability Assessment Process Flow diagram, identify which of the seven areas of security best apply to the scenario above. Select all that apply. Input Validation: Secure input and representations | APls: Secure API interactions Cryptography: Encryption use and vulnerabilities Client/Server: Secure distributed computing Code Error: Secure error handling Code Quality: Secure coding practice/patterns Encapsulation: Secure data structures