CDPSE · Question #153
CDPSE Question #153: Real Exam Question with Answer & Explanation
The correct answer is B: Dynamic application security testing (DAST). The best testing method to identify and review the application's runtime modules is dynamic application security testing (DAST). DAST is a testing technique that analyzes the application's behavior and functionality during its execution. DAST can detect security and privacy vulne
Question
An IT privacy practitioner wants to test an application in pre-production that will be processing sensitive personal data. Which of the following testing methods is BEST used to identity and review the application's runtime modules?
Options
- AStatic application security testing (SAST)
- BDynamic application security testing (DAST)
- CRegression testing
- DSoftware composition analysis
Explanation
The best testing method to identify and review the application's runtime modules is dynamic application security testing (DAST). DAST is a testing technique that analyzes the application's behavior and functionality during its execution. DAST can detect security and privacy vulnerabilities that are not visible in the source code, such as injection attacks, cross-site scripting, broken authentication, sensitive data exposure, or improper error handling. DAST can also simulate real- world attacks and test the application's response and resilience. DAST can provide a comprehensive and realistic assessment of the application's security and privacy posture in the pre-production environment.
Topics
Community Discussion
No community discussion yet for this question.