101 · Question #180
Which method of protection is not provided by the Rapid Deployment policy template?
The correct answer is D. Dynamic parameter validation. The Rapid Deployment policy covers data leakage, buffer overflow, and HTTP compliance protections out of the box, but dynamic parameter validation is not included in its default scope.
Question
Which method of protection is not provided by the Rapid Deployment policy template?
Options
- AData leakage
- BBuffer overflow
- CHTTP protocol compliance
- DDynamic parameter validation
How the community answered
(14 responses)- A7% (1)
- D93% (13)
Why each option
The Rapid Deployment policy covers data leakage, buffer overflow, and HTTP compliance protections out of the box, but dynamic parameter validation is not included in its default scope.
Data leakage protection is included through Data Guard, which is enabled by default in the Rapid Deployment policy to prevent exposure of sensitive information such as credit card numbers in server responses.
Buffer overflow protection is provided through attack signatures included in the Rapid Deployment policy that detect unusually long input values designed to overflow application memory buffers.
HTTP protocol compliance checking is a default component of the Rapid Deployment policy that enforces adherence to the HTTP specification and blocks malformed or non-compliant requests.
Dynamic parameter validation - which tracks parameters whose values change per session (such as hidden form fields or CSRF tokens) and validates them on subsequent requests - requires explicit configuration and is not part of the Rapid Deployment template's built-in protections. This feature must be configured separately after the initial policy is created.
Concept tested: Rapid Deployment policy template protection scope and limitations
Source: https://techdocs.f5.com/en-us/bigip-15-1-0/big-ip-asm-implementations/creating-a-security-policy-using-the-deployment-wizard.html
Topics
Community Discussion
No community discussion yet for this question.