Software Development Security Flashcards Preview

CISSP > Software Development Security > Flashcards

Flashcards in Software Development Security Deck (209)
Loading flashcards...
1

What is a distributed application?

An application that consists of components that reside on separate, networked systems.

2

What are the 3 distinct issues to be aware of when securing distributed systems?

- Software integrity
- Data integrity
- Access Control

3

What is an agent in relation to distributed systems?

A software component in a distributed system that performs a particular service

4

Patch Management, Host base Intrusion Detection systems and Performance & Capacity Management Systems are all examples of what?

Agents in a distributed system

5

What is an applet in a distributed system?

A component that's downloaded and executed by a web browser

6

What are the two most common applets?

Java and Active X

7

Java code runs in a constrained environment meaning that it can only communicate with the host from which it was downloaded? What is this commonly known as?

A sandbox

8

How does the security philosophy for Active X differ to that of Java?

The person running the web browser gets to determine whether they trust all Active X applets coming from a particular server. Digital certificates prove whether the Active X applet is genuine.

9

Which of the following applets doesn't use a concept of a sandbox? Java or Active X?

Active X

10

Mobile code thats downloaded from a server and run on a client is otherwise known as what?

An applet

11

Should Active X be blocked by enterprises?

Yes

12

What is Web 2.0?

web features such as wikis, blogs, web services, mashups, communities, information sharing, etc. that utilises different features on other websites.

13

In terms of applets, what is a mashup?

A web page or applications that combines functionality from external applications through their published Application Programming Interfaces (API)

14

An online map that displays locations that come from different online applications implement what?

Mashups

15

What is the principle of an Object-oriented environment?

Objects after they are written, can be used again and again making an enterprises entire software development more efficient over time

16

What is encapsulation with regards an object oriented environment?

inner workings of the object are hidden

17

What term is used to describe an object performing a function?

A method

18

What term is used to describe an object that is running?

An instance (also refers to an object that is a member of a class of objects)

19

What is a behaviour in relation to an object oriented environment?

The result of an object having received a message

20

A template that defines the methods and variables to be included in a particular type of object is known as what?

A class

21

Real world example of a class?

Class = Cake
Object = Chocolate Cake
Method = recipe

22

the tree structure of a collection of classes and objects is known as what?

Class hierarchy

23

What is delegation in relation to OO?

An object that delegates a message to another object that contains the correct method. Happens when an object doesn't have the requested method.

24

An object that gets some of it's characteristics from a class is known as what?

Inheritance

25

How do objects communicate with one another?

Through messages

26

What is Multi-inheritance?

When an object inherits characteristics from more than one class

27

What is the basic unit in OO?

The Object

28

What is Poly-instantiation?

the process of developing one object from another object, but with different values in the new object

29

What is Polymorphism?

the ability to hide implementation details behind a common message interface. permits objects to be added to the system without having to re-write existing procedures

30

What are the 4 most common types of databases in use today?

Relational
Hierarchical
Object-oriented
Network