nerdexam
F5

101 · Question #180

Which method of protection is not provided by the Rapid Deployment policy template?

The correct answer is D. Dynamic parameter validation. The Rapid Deployment policy covers data leakage, buffer overflow, and HTTP compliance protections out of the box, but dynamic parameter validation is not included in its default scope.

Section 4: Security Basics

Question

Which method of protection is not provided by the Rapid Deployment policy template?

Options

  • AData leakage
  • BBuffer overflow
  • CHTTP protocol compliance
  • DDynamic parameter validation

How the community answered

(14 responses)
  • A
    7% (1)
  • D
    93% (13)

Why each option

The Rapid Deployment policy covers data leakage, buffer overflow, and HTTP compliance protections out of the box, but dynamic parameter validation is not included in its default scope.

AData leakage

Data leakage protection is included through Data Guard, which is enabled by default in the Rapid Deployment policy to prevent exposure of sensitive information such as credit card numbers in server responses.

BBuffer overflow

Buffer overflow protection is provided through attack signatures included in the Rapid Deployment policy that detect unusually long input values designed to overflow application memory buffers.

CHTTP protocol compliance

HTTP protocol compliance checking is a default component of the Rapid Deployment policy that enforces adherence to the HTTP specification and blocks malformed or non-compliant requests.

DDynamic parameter validationCorrect

Dynamic parameter validation - which tracks parameters whose values change per session (such as hidden form fields or CSRF tokens) and validates them on subsequent requests - requires explicit configuration and is not part of the Rapid Deployment template's built-in protections. This feature must be configured separately after the initial policy is created.

Concept tested: Rapid Deployment policy template protection scope and limitations

Source: https://techdocs.f5.com/en-us/bigip-15-1-0/big-ip-asm-implementations/creating-a-security-policy-using-the-deployment-wizard.html

Topics

#Rapid Deployment template#dynamic parameter validation#policy protections#HTTP compliance

Community Discussion

No community discussion yet for this question.

Full 101 Practice