nerdexam
Exams101Questions#142
F5

101 · Question #142

101 Question #142: Real Exam Question with Answer & Explanation

The correct answer is C: Domain cookie validation. The Requested Resource (URI) element is protected by file type, URL name, and attack signature checks - domain cookie validation is a separate cookie-layer concern, not a URI-level protection.

Question

Which of the following does not pertain to protecting the Requested Resource (URI) element?

Options

  • AFile type validation
  • BURL name validation
  • CDomain cookie validation
  • DAttack signature validation

Explanation

The Requested Resource (URI) element is protected by file type, URL name, and attack signature checks - domain cookie validation is a separate cookie-layer concern, not a URI-level protection.

Common mistakes.

  • A. File type validation checks the extension portion of the URI (e.g., .php, .asp) and is a direct component of requested resource protection.
  • B. URL name validation verifies the URL path itself against allowed or disallowed patterns, which is a core part of protecting the requested resource.
  • D. Attack signature validation can be applied to URI values to detect injection attempts and other malicious patterns embedded in the requested resource.

Concept tested. BIG-IP ASM URI element protection vs. cookie protection

Reference. https://techdocs.f5.com/en-us/bigip-asm-implementations/protecting-web-applications-overview.html

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 101 Practice