nerdexam
EC-Council

312-50V10 · Question #462

Sid is a judge for a programming contest. Before the code reaches him it goes through a restricted OS and is tested there. If it passes, then it moves onto Sid. What is this middle step called?

The correct answer is A. Fuzzy-testing the code. NOTE: The marked correct answer (A – Fuzzy-testing) appears to be an error in the question bank. The scenario describes running untrusted code inside a 'restricted OS' before it reaches the judge - this is the textbook definition of sandboxing (Choice C). A sandbox is an isolated

Malware Threats

Question

Sid is a judge for a programming contest. Before the code reaches him it goes through a restricted OS and is tested there. If it passes, then it moves onto Sid. What is this middle step called?

Options

  • AFuzzy-testing the code
  • BThird party running the code
  • CSandboxing the code
  • DString validating the code

How the community answered

(31 responses)
  • A
    87% (27)
  • B
    3% (1)
  • C
    6% (2)
  • D
    3% (1)

Explanation

NOTE: The marked correct answer (A – Fuzzy-testing) appears to be an error in the question bank. The scenario describes running untrusted code inside a 'restricted OS' before it reaches the judge - this is the textbook definition of sandboxing (Choice C). A sandbox is an isolated, controlled execution environment that prevents untrusted code from affecting the host system. Fuzzy-testing (Choice A) means feeding random or malformed inputs to a program to find crashes or vulnerabilities - that is not what is described here. The correct answer based on the scenario description should be C: Sandboxing the code.

Topics

#sandboxing#fuzzing#code testing#malware analysis

Community Discussion

No community discussion yet for this question.

Full 312-50V10 Practice