CAS-003 · Question #188
CAS-003 Question #188: Real Exam Question with Answer & Explanation
The correct answer is D: Perform grey box penetration testing over the solution. With grey box penetration testing it means that you have limited insight into the devise which would most probable by some code knowledge and this type of testing over the solution would provide the most security coverage under the circumstances. A Code review refers to the exami
Question
Options
- APerform unit testing of the binary code
- BPerform code review over a sampling of the front end source code
- CPerform black box penetration testing over the solution
- DPerform grey box penetration testing over the solution
- EPerform static code review over the front end source code
Explanation
With grey box penetration testing it means that you have limited insight into the devise which would most probable by some code knowledge and this type of testing over the solution would provide the most security coverage under the circumstances. A Code review refers to the examination of an application (the new network based software product in this case) that is designed to identify and assess threats to the organization. With a static code review it is assumed that you have all the sources available for the application that is being examined. By performing a static code review over the front end source code you can provide adequate security coverage over the solution.
Community Discussion
No community discussion yet for this question.