Exam (elaborations)
CS6262 Final Study Set Questions with 100% Correct Verified Answers
- Course
- Institution
CS6262 Final Study Set Questions with 100% Correct Verified Answers
[Show more]
Seller
Follow
Content preview
CS6262 Final Study Set Questions with100% Correct Verified Answers
Which of the following is NOT an area of the C based toolchain where hardening can
occur.
Compiler
Linker
Assembler
Preprocessor - ANSWER Assembler
T/F: Malwares which specially encode or encrypt their payloads while communicating to
the C2 can evade IDS that analyze the traffic's payload. - ANSWER True
DNSSEC allows DNS to be more secure against attackers. Which one of these is NOT
a guarantee provided by DNSSEC?
Authenticated denial of existence
Verification of physical location
Integrity of the response
Authenticity of the DNS answer origin - ANSWER Verification of physical location
Which of the following is NOT a reason why emulator-based obfuscation is attractive to
attackers?
t makes traditional pure static analysis techniques useless.
It makes the obfuscated program's control flow graph (CFG) impossible to recover.
It can be easily adopted.
, The security experts' knowledge on x86 ISA is mostly useless for analyzing the
obfuscated program. - ANSWER It makes the obfuscated program's control flow
graph (CFG) impossible to recover.
A challenge for data flow analysis for mobile apps is that it may involve analysis of the
complex code of an operating system. How does the STAMP approach overcome this
difficulty?
It uses neural language processing (NLP) techniques to analyze the operating
system's code.
It utilizes the huge computation power of cloud computing platforms.
It skips the missing data flow to accelerate the analysis.
It uses simplified models to represent the operating system. - ANSWER It
uses simplified models to represent the operating system.
A company is planning to move its web infrastructure to the cloud. Which of the
following security challenges will the company have to deal with?
Possible proprietary implementation of security defenses
Trusting vendor's security model
Inadequate support for security investigations
All of the above - ANSWER All of the above
Property-Preserving Encryption (PPE) is popular in cloud computing. Which of
the follow is the PRIMARY weakness of PPE?
Extremely inefficient
Requires major change to application and database servers
By design the encryption leaks information
Does not support SQL queries - ANSWER By design the encryption leaks information
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller KenAli. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $13.24. You're not tied to anything after your purchase.
Can Stuvia be trusted?
4.6 stars on Google & Trustpilot (+1000 reviews)
79079 documents were sold in the last 30 days
Founded in 2010, the go-to place to buy study notes for 14 years now