C706 Practice Exam From Assessment Questions and Answers(A+ Solution guide)

Which due diligence activity for supply chain security should occur in the initiation phase of the software acquisition life cycle? -Facilitating knowledge transfer between suppliers -Lessening the risk of disseminating information during disposal -Mitigating supply chain security risk by providing user guidance -Developing a request for proposal (RFP) that includes supply chain security risk management - - Developing a request for proposal (RFP) that includes supply chain security risk management Which due diligence activity for supply chain security investigates the means by which data sets are shared and assessed? -An on-site assessment -A process policy review -A third-party assessment -A document exchange and review - A document exchange and review Consider these characteristics: Identification of the entity making the access request Verification that the request has not changed since its initiation Application of the appropriate authorization procedures Reexamination of previously authorized requests by the same entity Which security design analysis is being described? -Open design -Complete mediation -Economy of mechanism-Least common mechanism - Complete mediation Which software security principle guards against the improper modification or destruction of information and ensures the nonrepudiation and authenticity of information? -Integrity -Quality -Availability -Confidentiality - Integrity What type of functional security requirement involves receiving, processing, storing, transmitting, and delivering in report form? -Logging -Error handling -Primary dataflow -Access control flow - Primary dataflow