Question 3 In the following code snippet, which principle of secure design is violated? Not complete int result = 0; Marked out of 1 result = get_user_input(); P Flag question if (result == 1) { //error code 1: non-alphabetic character in user input } else { // input is fine, so process user input } Select one: O a. None of the above O b. Fail to a secure mode O c. Reduce attack surface O d. Keep design small & simple Check Question 4 Not complete In a function whose local variables are located behind (i.e. at smaller stack memory addresses) a buffer with an overflow vulnerability, the overflow vulnerability Marked out of 1 Flag question O a. cannot be exploited by an attacker since overflows cannot overwrite the function's local variables O b. may be exploited by an attacker by using the overflow to overwrite the function's return address O c. may be exploited by an attacker by using the overflow to overwrite the function's local variables O d. none of the above Check