Jacob, a security administrator, wants to protect an organization against an SQL injection attack. Which of the following controls will he implement?Each correct answer represents a complete solution. Choose all that apply.This type of question contains radio buttons and checkboxes for selection of options. Use Tab for navigation and Enter or space to select the option.Aoption AIntrusion detection systemBoption BWeb application firewallCoption CParameterized queriesDoption DInput validation
Question
Jacob, a security administrator, wants to protect an organization against an SQL injection attack. Which of the following controls will he implement?Each correct answer represents a complete solution. Choose all that apply.This type of question contains radio buttons and checkboxes for selection of options. Use Tab for navigation and Enter or space to select the option.Aoption AIntrusion detection systemBoption BWeb application firewallCoption CParameterized queriesDoption DInput validation
Solution
Jacob, as a security administrator, can implement several controls to protect an organization against an SQL injection attack. The correct options are:
B. Web application firewall - This is a special type of firewall that focuses on specific types of threats common to web applications, such as SQL injection attacks.
C. Parameterized queries - These are a type of SQL query where the command and the data are sent separately, making it much harder for an attacker to inject malicious code.
D. Input validation - This is a process where the data inputted into a system is checked to ensure it meets specific criteria. This can help prevent SQL injection attacks by ensuring that only valid data is entered into the system.
Option A, Intrusion detection system, while useful for detecting potential attacks, does not directly protect against SQL injection attacks.
Similar Questions
Which of these prevention techniques would be best used against an SQL injection attack?This type of question contains radio buttons and checkboxes for selection of options. Use Tab for navigation and Enter or space to select the option.optionAAddress space layout randomizationoptionBStack canaryoptionCReturn to libcoptionDWeb application firewall
What protection could be used to prevent an SQL injection attack?This type of question contains radio buttons and checkboxes for selection of options. Use Tab for navigation and Enter or space to select the option.optionAInput validationoptionBBuffer overflowoptionCLateral movementoptionDXML filtering
Which of the following is a way to prevent SQL injection attacks?*Encrypting network trafficInput validationImplementing a firewallInstalling antivirus software
Question 37 :Edward, a database administrator, is analyzing the database queries sent by a web application. The application is intended to only read data from the database. Which of the following queries should he expect to see?This type of question contains radio buttons and checkboxes for selection of options. Use Tab for navigation and Enter or space to select the option.optionAINSERToptionBSELECToptionCDELETEoptionDUPDATE
Question 2 :Which type of system could you use to trap and monitor an attacker?This type of question contains radio buttons and checkboxes for selection of options. Use Tab for navigation and Enter or space to select the option.optionAHoneypotoptionBDMZoptionCWeb application firewalloptionDNext‐generation firewall
Upgrade your grade with Knowee
Get personalized homework help. Review tough concepts in more detail, or go deeper into your topic by exploring other relevant questions.