nerdexam
(ISC)2

CISSP · Question #371

Which of the following is used to support the of defense in depth during development phase of a software product?

The correct answer is B. Polyinstantiation. Polyinstantiation is a technique that creates multiple versions of the same data with different security labels. This can prevent unauthorized users from inferring sensitive information from aggregated data or queries. Polyinstantiation can support the principle of defense in dep

Submitted by weili_xi· Mar 5, 2026Software Development Security

Question

Which of the following is used to support the of defense in depth during development phase of a software product?

Options

  • ASecurity auditing
  • BPolyinstantiation
  • CMaintenance
  • DKnown vulnerability list

How the community answered

(26 responses)
  • A
    15% (4)
  • B
    73% (19)
  • C
    4% (1)
  • D
    8% (2)

Explanation

Polyinstantiation is a technique that creates multiple versions of the same data with different security labels. This can prevent unauthorized users from inferring sensitive information from aggregated data or queries. Polyinstantiation can support the principle of defense in depth during the development phase of a software product by providing an additional layer of protection for data confidentiality and integrity.

Topics

#Defense in depth#Software development security#Polyinstantiation#Security architecture

Community Discussion

No community discussion yet for this question.

Full CISSP Practice