Software-security > secure programming > Flashcards

secure programming Flashcards

(6 cards)

Study These Flashcards
1
Q

what is STRIDE?

A
  • Spoofing of user identity
  • Tampering of data
  • Repudiation of actions
  • Information disclosure
  • Denial of service
  • Elevation of privilege
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

how can you prevent malicious input?

A
  • ensure input can only be created +modified by trusted parties
  • Authenticate source
  • Control access to source
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

how can you detect malicious input?

A
  • Format
  • verify properties of input
  • check sums, access log files
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

how should you react to maicious input?

A
  • refuse, block
  • alert, notify
  • log, shut down
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is defensive programming?

A

always validate input
-size, format, sequence, integrity, authenticity
anticipate failures and handle them

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is a trusted path?

A

A mechanism by which a person at a terminal can communicate directly with the Trusted Computing Base.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
Software-security
flashcards
Decks in class (6)
# Cards
Brainscape helps you reach your goals faster, through stronger study habits.
© 2026 Bold Learning Solutions. Terms and Conditions