Tag: security
Questions Related to security
-
Data Validation
-
Secure Cookies
-
Encryption
-
Comprehensive exception handling
-
Session ID
-
Account Privileges
-
UserName
-
Password
-
Ensure that the data has not been tampered with
-
Ensure that the session is valid
-
Ensure that the user is valid
-
All of the above
-
Cross Site Scripting
-
Phishing
-
SQL Injection
-
HTTP Response Splitting
-
The configuration management
-
The session management
-
The change management process
-
The authorization process
-
SOAP and SAML
-
SOAP and HTTP
-
SSL and SOAP
-
All
-
A mechanism that requires only a password
-
Basic authentication
-
2/3 factor authentication
-
A mechanism with no lock-out, to prevent accidentally denying legitimate access
-
Page Scope
-
Session Scope
-
Request Scope
-
Application Scope
-
Depends on how it is used
-
Stateful protocol
-
Transport Layer protocol
-
Stateless protocol
-
It does not matter, the web serve will treat all GET requests as POST requests
-
The information in a POST request cannot be manipulated. It is possible to change a GET request
-
A GET request is sent when requesting information; A POST request is sent when sending information
-
The data is sent in the body of the POST request and in the URL in a GET request