- (Exam Topic 2)
What does static application security testing (SAST) offer as a tool to the testers?
Correct Answer:
C
Static application security testing (SAST) is conducted with knowledge of the system, including source code, and is done against offline systems.
- (Exam Topic 1)
Which data formats are most commonly used with the REST API?
Correct Answer:
C
JavaScript Object Notation (JSON) and Extensible Markup Language (XML) are the most commonly used data formats for the Representational State Transfer (REST) API, and are typically implemented with caching for increased scalability and performance.
- (Exam Topic 2)
Which process serves to prove the identity and credentials of a user requesting access to an application or data?
Correct Answer:
B
Authentication is the process of proving whether the identity presented by a user is true and valid. This can be done through common mechanisms such as user ID and password combinations or with more secure methods such as multifactor authentication.
- (Exam Topic 4)
The GAPP framework was developed through a joint effort between the major Canadian and American
professional accounting associations in order to assist their members with managing and preventing risks to the privacy of their data and customers.
Which of the following is the meaning of GAPP?
Correct Answer:
C
- (Exam Topic 2)
Which European Union directive pertains to personal data privacy and an individual's control over their personal data?
Correct Answer:
B
Directive 95/46/EC is titled "On the protection of individuals with regard to the processing of personal data and on the free movement of such data."
