D487 Secure SW Design MOST RECENT
COMPREHENSIVE QUESTIONS AND ANSWERS
|COMPLETE SOLUTIONS |A+ GRADED |100%
CORRECT!!
Save
Practice questions for this set
Learn 1 /7 Study with Learn
Common Vulnerability Scoring System (CVSS)
Choose an answer
Which practice in the Ship (A5)
The model used to assess the phase of the security development
1 2
severity of a vulnerability... cycle verifies whether the product
meets security mandates?
How can you establish your own
Which post-release support activity
SDL to build security into a process
3 4 should be completed when
appropriate for your organization's
companies are joining together?
needs based on digital enterprise?
Don't know?
, Terms in this set (146)
Which practice in the Ship (A5) A5 policy compliance analysis
phase of the security development
cycle verifies whether the product
meets security mandates?
Which post-release support activity PRSA1: External vulnerability disclosure response
defines the process to
communicate, identify, and alleviate
security threats?
What are two core practice areas of Governance, Construction
the OWASP Security Assurance
Maturity Model (OpenSAMM)?
Which practice in the Ship (A5) Vulnerability scan
phase of the security development
cycle uses tools to identify
weaknesses in the product?
Which post-release support activity Security architectural reviews
should be completed when
companies are joining together?
Which of the Ship (A5) deliverables Analyze activities and standards
of the security development cycle
are performed during the A5 policy
compliance analysis?
Which of the Ship (A5) deliverables white-box security test
of the security development cycle
are performed during the code-
assisted penetration testing?
COMPREHENSIVE QUESTIONS AND ANSWERS
|COMPLETE SOLUTIONS |A+ GRADED |100%
CORRECT!!
Save
Practice questions for this set
Learn 1 /7 Study with Learn
Common Vulnerability Scoring System (CVSS)
Choose an answer
Which practice in the Ship (A5)
The model used to assess the phase of the security development
1 2
severity of a vulnerability... cycle verifies whether the product
meets security mandates?
How can you establish your own
Which post-release support activity
SDL to build security into a process
3 4 should be completed when
appropriate for your organization's
companies are joining together?
needs based on digital enterprise?
Don't know?
, Terms in this set (146)
Which practice in the Ship (A5) A5 policy compliance analysis
phase of the security development
cycle verifies whether the product
meets security mandates?
Which post-release support activity PRSA1: External vulnerability disclosure response
defines the process to
communicate, identify, and alleviate
security threats?
What are two core practice areas of Governance, Construction
the OWASP Security Assurance
Maturity Model (OpenSAMM)?
Which practice in the Ship (A5) Vulnerability scan
phase of the security development
cycle uses tools to identify
weaknesses in the product?
Which post-release support activity Security architectural reviews
should be completed when
companies are joining together?
Which of the Ship (A5) deliverables Analyze activities and standards
of the security development cycle
are performed during the A5 policy
compliance analysis?
Which of the Ship (A5) deliverables white-box security test
of the security development cycle
are performed during the code-
assisted penetration testing?
