Tag: security

Questions Related to security

What type of testing is done by ASAP team during the testing and rollout phase?
technology security

  1. Integration testing

  2. System testing

  3. Penetration testing

  4. Unit testing

Show answer
Correct Option: C

Whats the name of the TCS security library available for the remediation of security vulnerabilities?
technology security

  1. TCS Security API

  2. TCS Security Library

  3. TCS Application Security API

  4. TCS e-Security Library

Show answer
Correct Option: A

As per the ASAP Process what all artifacts are provided to help aid in the analysis phase?
technology security

  1. Security URS

  2. Security URS and SRS

  3. Security Design Guidelines

  4. All of the above

Show answer
Correct Option: B

Who does the review of the security elements of the updated project artifacts at the end of each phase of the application development life cycle?
technology security

  1. Application development team

  2. Project Manager

  3. ASAP Team

  4. Testing Team

Show answer
Correct Option: C

What is TCS ASAP all about?
technology security

  1. Its a TCS proprietary methodology

  2. Its a security framework

  3. Its about security testing

  4. Its a product from TCS

Show answer
Correct Option: B

The three steps to successful patch management are …
technology security

  1. Acquiring, Testing, Installing

  2. Testing, Remediation, Peer Review

  3. Determine needs, Acquire resources, Install the patch

  4. Both A & B

Show answer
Correct Option: A

The correct way to disable autocomplete in the browser for certain forms is to ….
technology security

  1. Set autocomplete to “0”

  2. Set autocomplete to “Off”

  3. Set autocomplete to some other value

  4. Set autocomplete to “no-store”

Show answer
Correct Option: B

Which of the following is appropriate for customer emails regarding a limited time promotional offer?
technology security

  1. Request that the user authenticate him/herself by replying to the email with their account credentials.

  2. Personalized greeting line

  3. Providing easy access to the customer's account via a “Click Here” style link

  4. Sending the email from a domain set up specifically for the special offer

Show answer
Correct Option: B

Credit card numbers should be logged into the log file during exception

technology security

  1. No. Because leads to insecure storage of private information of the customer

  2. Yes. Because it is a good logging practice to log all relevant information during an exception

  3. Yes. Because it will help in troubleshooting specific customer problems

  4. No. Because its an additional over head

Show answer
Correct Option: A

A race condition in a web server can cause …
technology security

  1. Resources to become unavailable to legitimate users

  2. Cross Site Tracing

  3. Server Instability

  4. Both A and B

Show answer
Correct Option: C