CISSP · Question #934
Proven application security principles include which of the following?
The correct answer is A. Minimizing attack surface area. Minimizing the attack surface area is a core principle of application security. The attack surface refers to the various points (e.g., interfaces, inputs, and code paths) where an attacker could potentially gain access to a system. By minimizing the attack surface, you reduce the
Question
Proven application security principles include which of the following?
Options
- AMinimizing attack surface area
- BHardening the network perimeter
- CAccepting infrastructure security controls
- DDeveloping independent modules
How the community answered
(36 responses)- A89% (32)
- B6% (2)
- C3% (1)
- D3% (1)
Explanation
Minimizing the attack surface area is a core principle of application security. The attack surface refers to the various points (e.g., interfaces, inputs, and code paths) where an attacker could potentially gain access to a system. By minimizing the attack surface, you reduce the number of opportunities available for attackers to exploit vulnerabilities. This can be achieved by: Removing unnecessary functionality. Limiting user inputs. Reducing the number of exposed services or components. Ensuring that only essential parts of the application are accessible. This principle is part of a broader approach to making applications more secure by focusing on reducing the exposure to threats.
Topics
Community Discussion
No community discussion yet for this question.