Eccouncil Exam 312-39 Topic 9 Question 28 Discussion

Actual exam question for Eccouncil's 312-39 exam

Question #: 28
Topic #: 9

Wesley is an incident handler in a company named Maddison Tech. One day, he was learning techniques for eradicating the insecure deserialization attacks.

What among the following should Wesley avoid from considering?

ADeserialization of trusted data must cross a trust boundary

BUnderstand the security permissions given to serialization and deserialization

CAllow serialization for security-sensitive classes

DValidate untrusted input, which is to be serialized to ensure that serialized data contain only trusted classes

Show Suggested Answer

Suggested Answer: C

by Elli at May 07, 2022, 12:21 PM

Limited Time Offer

25%

Off

Get Premium 312-39 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!