Which one of the following is NOT a step of the risk-based testing process for secure software?Question 16Answera.Audit of software and documentationb.Software analysisc.Documentation of asset awarenessd.Identification of assets and objectives

Which one of the following is NOT a step of the risk-based testing process for secure software?Question 16Answera.Audit of software and documentationb.Software analysisc.Documentation of asset awarenessd.Identification of assets and objectivesClear my choiceQuestion 17Not yet answeredPoints out of 1.00Flag questionTipsQuestion textIn the course of selecting an effective programming language, languages that are ________ should not be used by software when security is a necessity.Question 17Answera.At risk of buffer overflowsb.Below the application levelc.Compromised by SQl injectiond.Above the physical levelClear my choiceQuestion 18Not yet answeredPoints out of 1.00Flag questionTipsQuestion textWhen designing security architecture for software development, creators should do which of the following?Question 18Answera.Rely primarily on obfuscation for security concerns.b.Do not worry about separating functions needing higher privilege from othersc.Decide how much security is enough.d.Do not be too concerned about reducing the damage from hacking activitiesClear my choiceQuestion 19Not yet answeredPoints out of 1.00Flag questionTipsQuestion textAn important goal to meet when designing efficient, secure software is to __________.Question 19Answera.Create the design understanding that the specifications will be expanded until the project is deployedb.Allow for additional functions to remain in the software so they may be used laterc.Determine the amount of time it will take to complete the designd.Create the design with an understanding that the initial security measures may fail due to new attacks or vulnerabilitiesClear my choiceQuestion 20Not yet answeredPoints out of 1.00Flag questionTipsQuestion textRegarding secure software development, ___________ states that the impact (or damage) that can occur after a vulnerability is exploited should be minimized.Question 20Answera.Damage confinementb.Impact vulnerability policyc.Impact survivabilityd.Damage consumption

What is the primary goal of risk management in software testing?a.To eliminate all risksb.To identify risks earlyc.To minimize the impact of risksd.To assign blame for risks

Explain the meaning of the following terms in software engineering. (6 Marks) i) Software quality assurance ii) Software quality control iii) Software audit

Apa yang dimaksud dengan "PERT" dalam perencanaan proyek?Question 35Answera.Program Evaluation and Review Techniqueb.Project Execution and Risk Testingc.Planning and Execution of Risk Techniquesd.Semua jawaban benar

When reviewing the risk management process at a newly formed organization, the information security professional notices that all the steps have not been considered as part of the process. The process includes framing and responding but should also includea.auditing and reporting risksb.controlling and identifying risksc.identifying and reporting risksd.assessing and monitoring risks