nerdexam
F5

101 · Question #154

Which of the following methods are used by the BIG-IP ASM System to protect against SQL injections?

The correct answer is B. Metacharacter enforcement and attack signatures. BIG-IP ASM defends against SQL injection primarily through metacharacter enforcement and attack signatures, which block the special characters and known patterns that SQL injection exploits rely on.

Section 4: Security Basics

Question

Which of the following methods are used by the BIG-IP ASM System to protect against SQL injections?

Options

  • AHTTP RFC compliancy checks
  • BMetacharacter enforcement and attack signatures
  • CHTTP RFC compliancy checks and length restrictions
  • DResponse scrubbing, HTTP RFC compliancy checks, and metacharacter enforcement

How the community answered

(27 responses)
  • A
    7% (2)
  • B
    89% (24)
  • C
    4% (1)

Why each option

BIG-IP ASM defends against SQL injection primarily through metacharacter enforcement and attack signatures, which block the special characters and known patterns that SQL injection exploits rely on.

AHTTP RFC compliancy checks

HTTP RFC compliancy checks validate that requests conform to HTTP protocol standards; they do not inspect or restrict SQL-specific metacharacters in parameter values.

BMetacharacter enforcement and attack signaturesCorrect

Metacharacter enforcement prevents SQL injection by blocking or escaping special characters such as single quotes, semicolons, and comment sequences that attackers embed in input to alter SQL query logic. Attack signatures provide a pattern-matching layer that detects known SQL injection payloads in request parameters, cookies, and headers, giving ASM two complementary and targeted defenses specifically designed for SQL injection.

CHTTP RFC compliancy checks and length restrictions

Length restrictions limit input size and can reduce attack surface, but they do not detect or block SQL syntax patterns; combining them with RFC checks still leaves metacharacter-based SQL payloads unaddressed.

DResponse scrubbing, HTTP RFC compliancy checks, and metacharacter enforcement

Response scrubbing is used to prevent sensitive data leakage in server responses and does not prevent SQL injection in inbound requests; including it here conflates two separate protection mechanisms.

Concept tested: BIG-IP ASM SQL injection prevention methods

Source: https://techdocs.f5.com/en-us/bigip-15-1-0/big-ip-asm-implementations/preventing-sql-injection-attacks.html

Topics

#SQL injection#attack signatures#metacharacter enforcement#ASM protection

Community Discussion

No community discussion yet for this question.

Full 101 Practice