F5
101 · Question #696
101 Question #696: Real Exam Question with Answer & Explanation
The correct answer is C: The webapp uses positive security, and the new content has not been defined as allowed. In a positive security model, only explicitly whitelisted content is permitted - new content must be added to the allowed resources list before users can reach it.
Question
A web administrator has added content to a web application, but users are unable to access the new content. What could be preventing them from accessing the content?
Options
- AThe webapp uses negative security, and the attack signature is using an invalid regular
- BThe webapp uses positive security, and the nourishes database has not been updated
- CThe webapp uses positive security, and the new content has not been defined as allowed
- DThe webapp uses negative security, and the denial of service signatures have not been
Explanation
In a positive security model, only explicitly whitelisted content is permitted - new content must be added to the allowed resources list before users can reach it.
Common mistakes.
- A. Negative security blocks known-bad traffic via attack signatures, and an invalid regular expression in a signature would not prevent users from accessing new, legitimate content.
- B. A signatures or threat database is a component of negative security, not positive security - positive security blocks based on missing allowlist entries, not outdated threat feeds.
- D. Denial of service signatures are a negative security mechanism and not updating them would not restrict access to newly added application content.
Concept tested. WAF positive vs negative security model
Community Discussion
No community discussion yet for this question.