C2150-810無料問題集「IBM Security AppScan Source Edition Implementation」

質問 1

You are reviewing an application and come across a method called doSomething() that can be executed by other systems to provide data to the application via this method's
parameters.
Which type of custom rule do you need to create for AppScan Source to properly capture this data?

（A）Taint Propagator

（B）Not Susceptible to Taint

（C）Sink

（D）Tainted Callback

（E）Source

正解：E 解答を投票する

質問 2

How does the "Single virtual call" setting affect scan behavior?

（A）If set to false, it allows the detection of all virtual functions calls.

（B）If set to true, it allows the taint analysis to follow multiple implementations of a virtual function.

（C）If set to false, it allows the taint analysis to follow multiple implementations of a virtual function.

（D）If set to true, it allows the detection of all virtual functions calls.

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 3

To scan JavaScript included within an ASP.NET application, which additional steps must be completed to ensure these artifacts are scanned?

（A）Import the Visual Studio Solution

（B）Create a C# project type

（C）Build a build.xml file and add it to the application project

（D）Manually create a JavaScript project type and add it to the application

正解：A 解答を投票する

質問 4

When scanning a Java Application, the scan fails with Java errors related to missing components.
Which dialog can help fix the compilation issues?

（A）Project Dependencies

（B）Filter Dialog

（C）JSP Project Dependencies

（D）Scan Rules and Rule Sets

正解：C 解答を投票する

質問 5

You are reviewing a banking application and find a lost sink method called performTransactionf...) that sends requested transaction information (bill payment, fundstransfer, etc) to the back-end COBOL application running on IBM System z mainframe that actually moves the money.
Which type of custom rule should you create for this method?

（A）Taint Propagator

（B）Not Susceptible to taint

（C）Sink

（D）Tainted Callback

（E）Source

正解：D 解答を投票する

C2150-810 無料問題集「IBM Security AppScan Source Edition Implementation」

弊社を連絡する

関連リンク

トップ試験