Information Security in SDLC Quiz

Questions and Answers

What is the primary goal of integrating information security into the System Development Life Cycle (SDLC)?

To protect the information that the system will transmit, process, and store. (correct)

To ensure that a system is user-friendly.

To accelerate the development process.

To reduce the overall cost of development.

Which of the following best describes the purpose of code review in secure software development?

To find security flaws related to a system's features and design, along with their root causes. (correct)

To ensure the code follows the intended design.

To identify all bugs and performance issues.

To improve the readability of the code for other developers.

What is the main purpose of threat modeling in the context of secure software development?

To replace the need for code reviews.

To analyze the security of an application through a structured approach and to identify, quantify, and address the risks associated with it. (correct)

To identify performance bottlenecks in the application.

To test the application's user interface.

Which statement best differentiates threat modeling from code review?

Code review pinpoints security issues in a system’s features and design, while threat modeling offers security risk analysis. (C)

According to the content, what would be a characteristic of the System Development Life Cycle (SDLC)?

It is a multistep process that is used to develop, implement, and retire information systems. (B)

What is the primary cause of a race condition in software?

Unexpected ordering of events that conflict over shared resources. (C)

What is the root vulnerability exploited in SQL injection attacks?

Failure to validate user input before querying a database. (A)

What is the core mechanism behind DNS cache poisoning?

Corrupting a DNS server to redirect a domain to a malicious IP address. (B)

Which of the following is a security risk associated with private key systems before using a public key system for exchange?

The insecure delivery of the key to the other party. (C)

Why can the stateless nature of HTTP pose security challenges?

It makes tracking a user's interactions over multiple exchanges difficult. (D)

Which is a significant vulnerability when weak password mechanisms are in use?

It makes a system more vulnerable to unauthorized access and breaches. (D)

What is a potential risk associated with the use of freeware public key systems?

The program could have been specifically made by attackers to intercept private keys. (C)

How can public key cryptography be compromised when using an unauthenticated channel?

By intercepting keys physically or digitally while in transit. (C)

What is a key objective of a thorough code review?

To identify security flaws and root causes within an application (A)

What is a characteristic of an effective password policy?

Specifying the acceptable types and number of characters, and limiting reuse of old passwords (B)

Why might traditional testing methods fail to uncover all security flaws in applications?

They do not analyze the source code, making it harder to find all vulnerabilities (B)

What is the primary goal of integrating security and usability?

To ensure only one secure method of performing a task and ensuring security (D)

In the context of code review, what does "self-defending" mean?

The application has built-in mechanisms to protect against security breaches (A)

What is a common security issue arising from poor usability?

Users tend to take the less secure 'easy way' (B)

What should a penetration test ideally reveal after a proper security code review?

No added application vulnerabilities related to the developed code (C)

What is a key element that security code reviews blend?

Human effort and technological support (B)

Which of the following best defines an 'asset' from a business security perspective?

A resource that has value, such as company information or reputation. (A)

What is the primary goal of 'confidentiality' as a security objective?

Protecting against unauthorized disclosure of information. (D)

Which of the following is an example of an 'intangible asset' a company should protect?

Online reputation, trade secrets, and intellectual property. (C)

What is the main goal of the 'integrity' security objective?

Preventing unauthorized changes to information. (B)

Which is the BEST description of 'availability' in the context of security?

The ability of authorized users to access a system when needed. (A)

During the 'Create an Application Overview' step, which activity is NOT included?

Defining the company's financial strategy. (D)

What should you consider when determining your security objectives?

Client data to protect, compliance requirements and quality of service. (B)

Which of these is NOT a typical security objective?

Ensuring unlimited access to all resources for all users. (C)

Which of the following best describes the primary goal of threat modeling?

To identify potential vulnerabilities and threats before they are exploited. (A)

In the context of software security, what is source code review primarily designed to achieve?

To discover security vulnerabilities and coding errors. (A)

According to the provided threat analysis, which type of threat is NOT specifically identified as a concern?

Repudiation (B)

What does the acronym 'STRIDE' represent in threat modeling?

Spoofing, Tampering, Repudiation, Information Disclosure, Denial of Service, Elevation of Privilege (D)

What is a primary concern related to the login feature according to the threat analysis?

Ease of use might create a vulnerability for attackers. (A)

Which of the following is a key aspect of incorporating security into the Software Development Life Cycle (SDLC)?

Integrating security practices throughout all phases of development. (A)

What is the main concern about unauthorized data modification within the application?

Users tampering with data. (A)

What is the purpose of using countermeasures in the context of threat modeling?

To reduce the impacts of identified threats by implementing security controls. (A)

Which regulations are implicitly referenced as a reason for concern about information disclosure?

HIPAA (A)

What is a way attackers may try to get customer data, according to the analysis?

Phishing attacks and social engineering. (B)

What is the described purpose of the DREAD methodology in the analysis?

To rate, compare, and prioritize the severity of risks. (D)

What is a key characteristic of threats that are scored high in the 'Damage' category using the DREAD methodology?

They allow an attacker to take control of systems. (C)

What type of attack is explicitly mentioned due to the high availability requirements of the application?

Distributed Denial of Service (DDoS). (A)

Flashcards

System Development Life Cycle (SDLC)

The overall process of developing, implementing, and retiring information systems through a series of phases like initiation, analysis, design, implementation, maintenance, and disposal.

SDLC Models and Methodologies

Different methods and models used to guide the SDLC process, each with its own unique phases and steps.

Information Security in SDLC

The process of integrating security considerations into every stage of the SDLC, ensuring information protection throughout the system's life.

Code Review

A systematic examination of application code to identify vulnerabilities and security flaws, aiming to uncover design issues and root causes.

Threat Modeling

A structured approach to analyzing the security of an application by identifying, quantifying, and addressing potential risks.

Race Condition

A program fails when the order of actions by different parts of the program leads to conflicting use of the same shared resource.

SQL Injection

Attackers exploit vulnerabilities in how websites handle user input to gain unauthorized access to a database.

DNS Poisoning

A type of attack where attackers modify the DNS system to redirect users to fake websites, often to steal personal information.

Unauthenticated Key Exchange

A security problem where a shared secret key is not securely distributed, leading to potential compromise.

Magic URLs and Hidden Forms

Using hidden URLs or forms on websites that are not properly authenticated can lead to security vulnerabilities.

Weak Password Systems

Not requiring strong passwords and allowing multiple wrong attempts can make a system vulnerable to attack.

What is an asset?

Assets are resources that have value, which can be tangible or intangible, and can be different for different perspectives.

What are security objectives?

Security objectives are goals that aim to protect data and applications from unauthorized access, changes, and disruptions. They ensure the confidentiality, integrity, and availability of information.

What is confidentiality?

Confidentiality protects sensitive information from being accessed by unauthorized individuals.

What is integrity?

Integrity ensures that data is accurate and hasn't been tampered with.

What is availability?

Availability guarantees that systems and data are accessible when needed, even during attacks.

What is an application overview?

An application overview identifies key functionality, characteristics, clients, deployment scenarios, roles, usage scenarios, technologies, and security mechanisms.

What is threat modeling?

Threat modeling is an iterative process that involves identifying, understanding, and mitigating potential threats to an application.

Why is threat modeling iterative?

Threat modeling is a continuous process that should be done iteratively. You can start with basic information and add more detail as your design evolves.

What is Code Review?

A systematic examination of application source code to identify security flaws, design issues, and root causes, aiming to ensure proper security and logical controls are present and working as intended.

What is the goal of Code Review?

Code reviews aim to identify potential security flaws by carefully examining how the application is designed and implemented. This includes analyzing its features, functionalities, and how it interacts with external components.

Why is Code Review important?

It ensures the application is built with security in mind, making it 'self-defending' against common attacks. This helps to prevent vulnerabilities from being introduced in the first place.

How does Code Review complement traditional testing?

Traditional testing methods might miss certain flaws. A deep dive into the code is often needed to uncover hidden vulnerabilities and determine the best mitigation techniques.

What are the elements of conducting a Code Review?

Code review involves a blend of human expertise and technology support. This can range from a single person manually reviewing code to sophisticated tools designed for code analysis.

How successful is a good Code Review?

A penetration test should ideally discover minimal new security vulnerabilities after a thorough code review, indicating the effectiveness of the process.

What is the purpose of Secure Code Review?

Code reviews are conducted to ensure that developers are adhering to secure coding practices and minimizing security risks within the application.

What are the benefits of Secure Code Review?

By identifying and mitigating vulnerabilities early, it can reduce the likelihood and impact of security incidents. It's a crucial aspect of secure development.

Spoofing

An attacker attempts to impersonate a legitimate user or system to gain unauthorized access. For example, an attacker might send a fake email pretending to be from a trusted source to trick a user into revealing sensitive information.

Tampering

A type of attack where the attacker attempts to modify or corrupt data before it is processed or stored. For example, an attacker might change prices in an online store or alter the contents of a database.

Repudiation

A security issue where an attacker can access data without being detected, leaving no trace of their actions.

Information Disclosure

An attacker gains access to sensitive information that they are not authorized to see. This can include medical records, financial data, or other confidential information.

Denial of Service

A security issue where a system is unavailable to users. This attack can target websites, servers, or other systems to make them unusable.

Elevation of Privilege

An attacker gains higher privileges than they are assigned. This could allow the attacker to access restricted data or control the system without authorization.

DREAD

A method used to rank and prioritize security risks based on a combination of factors including Damage, Reproducibility, Exploitability, Affected Users, and Discoverability. This helps security teams focus on the most critical issues.

Secure SDLC (Secure Software Development Life Cycle)

A systematic process designed to find and address potential security vulnerabilities in software during its development lifecycle. It involves integrating security considerations into each phase, from planning to deployment and beyond.

Code Review for Security

A type of code review that aims to identify potential security vulnerabilities and weaknesses in application code. It involves a rigorous examination of the codebase to ensure adherence to security best practices and standards.

Study Notes

Module 6 Goals

• Students must be able to identify secure software design principles.
• Students must be able to identify issues and common errors made by developers.
• Students must be able to describe the importance of code review and threat modeling.
• Students must be able to identify methodologies in code review and threat modeling.
• Students must be able to perform simple threat modeling.

Focal Points

• The system development life cycle is the overall process of developing, implementing, and retiring information systems. It includes steps like initiation, analysis, design, implementation, and maintenance, to disposal.
• Code review aims to identify security flaws in an application, along with root causes.
• Threat modeling is an in-depth approach to analyze the security of an application.  It helps in identifying, quantifying, and addressing security risks associated with an application. It complements secure code review by providing context and risk analysis.

Lesson 1

• Principles of Secure Software Development

Lesson 2

• Overview of Code Review

Lesson 3

• Overview of Threat Modeling

Lesson 1 (Principles of Secure Software Development)

• The system development life cycle must integrate information security.
• Code review identifies security flaws.
• Threat modeling analyzes application security.

Secure Software Development Life Cycle (SSDLC)

• Risk assessment
• Requirements & threats
• Threat modeling
• Design review
• Design
• Development
• Static analysis
• Security configuration
• Security assessment & deployment
• Testing
• Security testing & code review

Phase 1: Requirements

• Collect new feature requests from stakeholders.
• Identify any security considerations for functional requirements.

Phase 2: Design

• Translate in-scope requirements into a plan for the application.
• Define security concerns based on what should not happen.

Phase 3: Development

• Secure coding guidelines are followed for code quality.
• Code reviews are used to ensure these guidelines are correctly followed.
• Modern applications use free open-source components.

Phase 4: Verification

• Verification is where the application goes through thorough testing to ensure compliance with requirements.
• Automated tools like CI/CD pipelines are used to verify the application or release.

Phase 5: Maintenance and Evolution

• Vulnerabilities are addressed long after release.
• Vulnerabilities may also come from open-source components.
• Bug fixing and security updates are needed.

Secure Software Design Principles

• Keep design simple and small
• Access decisions by permissions, not exclusion
• Design depends on possession of keys/passwords
• Programs/users utilize only necessary privileges
• Minimize mechanisms common to multiple users
• Ensure human interface makes security mechanisms straightforward

Software Development Security Problems

• Buffer Overruns
• Command Injection
• Cross-Site Scripting
• Failure to Handle Errors

Other Security Issues

• Failure to Protect Network Traffic
• Failure to Store and Protect Data Securely
• Failure to Use Cryptographically Strong Random Numbers
• Format String Problems

Description

Test your understanding of the integration of information security into the System Development Life Cycle (SDLC) through a series of questions. This quiz covers key concepts such as threat modeling, code reviews, and common vulnerabilities in software development. Ideal for students and professionals in information security and software engineering.