MultipleChoice
Which of the following ISO standards is entitled as "Information technology - Security techniques - Information security management - Measurement"?
OptionsMultipleChoice
Which option best is an attack with IP fragments that cannot be reassembled?
OptionsMultipleChoice
According to U.S. Department of Defense (DoD) Instruction 8500.2, there are eight Information Assurance (IA) areas, and the controls are referred to as IA controls. Which of the following are among the eight areas of IA defined by DoD? Each correct answer represents a complete solution. Select all that apply.
OptionsMultipleChoice
Which of the following elements sets up a requirement to receive the constrained requests over a protected layer connection, such as TLS (Transport Layer Security)?
OptionsMultipleChoice
Microsoft software security expert Michael Howard defines some heuristics for determining code review in "A Process for Performing Security Code Reviews". Which of the following heuristics increase the application's attack surface? Each correct answer represents a complete solution. Select all that apply.
OptionsOrderList
Cigital Risk Management Method was developed by Gary McGraw of Cigital and John Viega of Stonewall Software, and it defines software security risk management process. Choose and re-order the risk management steps that are included in this method.


MultipleChoice
Which of the following concepts represent the three fundamental principles of information security?
Each correct answer represents a complete solution. Select three.
Options