Exam 212-82 topic 1 question 17 discussion

Actual exam question from ECCouncil's 212-82

Question #: 17
Topic #: 1

Miguel, a professional hacker, targeted an organization to gain illegitimate access to its critical information. He identified a flaw in the end-point communication that can disclose the target application's data.
Which of the following secure application design principles was not met by the application in the above scenario?

A. Secure the weakest link
B. Do not trust user input
C. Exception handling
D. Fault tolerance

Show Suggested Answer

Suggested Answer: A 🗳️

by kanchantanwani at June 21, 2023, 5:47 p.m.

Comments

Submit Cancel

kanchantanwani

Highly Voted 1 year, 6 months ago

Selected Answer: A

The correct answer is A: Secure the weakest link Attackers target a system that is easy to penetrate. For example, to gain access to the encrypted data on the network, attackers will not intercept the data and crack encryption; instead they will go after the end points of communication to find a flaw that discloses the data. Identify and strengthen the areas at risk until levels of risk are satisfactory. Source: EC Council - C|CT: Courseware Module 9 - Understand Secure Application Design & Architecture - Define Secure Design Principles

upvoted 5 times

...

044f354

Most Recent 4 months, 1 week ago

Selected Answer: A

EC-Council Official Curricula Certified Cybersecurity Technician v1 https://online.vitalsource.com/reader/books/9781635679533/ Module 09 Page 1152 Secure the weakest link Attackers target a system that is easy to penetrate. For example, to gain access to the encrypted data on the network, attackers will not intercept the data and crack encryption; instead they will go after the end points of communication to find a flaw that discloses the data. Identify and strengthen the areas at risk until levels of risk are satisfactory.

upvoted 1 times

...