CompTIA Security+ Certification Practice Exams, Fourth Edition (Exam SY0-601), 4th Edition

Chapter 15

Application Attacks and Security

CERTIFICATION OBJECTIVES

15.01 Common web application attacks

15.02 Secure coding

15.03 Continuous integration and delivery

QUESTIONS

Applications, including web sites, must be created with security in mind at all phases of development. App usage must be monitored to identify performance and security problems.

Secure coding is a programming concept that emphasizes security at all times when creating or modifying code. This helps mitigate common attacks such as cross-site scripting, injection attacks, and more. The Open Web Application Security Project (OWASP) provides guidance in securing web applications.

Application code testing can be automated to expedite the continuous delivery of ...

Get CompTIA Security+ Certification Practice Exams, Fourth Edition (Exam SY0-601), 4th Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

CompTIA Security+ Certification Practice Exams, Fourth Edition (Exam SY0-601), 4th Edition by Daniel Lachance, Glen E. Clarke

Chapter 15

QUESTIONS

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly