CSS QUIZ 9 ANSWERS

 

Computer system security quiz 9 Solution | Css quiz week 9 Answer with Reason | css quiz aktu

Computer System Security Quiz week  9 Solution

Q:1. Which of the following is correct for CSRF attack?

3.Both 1 and 2

CSRF is an attack that tricks the victim into submitting a malicious request. It inherits the identity and privileges of the victim to perform an undesired function on the victim’s behalf. For most sites, browser requests automatically include any credentials associated with the site, such as the user’s session cookie, IP address, Windows domain credentials, and so forth

Q:2. One of the ways to prevent CSRF attack is that you should use _____ validation.

4.Both 1 and 2

In order to stay safe from Cross-site Request Forgery (CSRF) attacks, make use of the suggested and the most widely used prevention techniques which are known as an anti-CSRF token, also sometimes referred to as the synchronizer tokens.

Q:3. Some of the vulnerability of a websites is/are ?

4.All of the above

Most Common Website Security Vulnerabilities are 1.SQL Injection 2.CSRF (CROSS-SITE REQUEST FORGERY ) 3.Cross Side Scripting (XSS)

Q:4. _________ is a attack in which the script is stored permanently on server.

4.All of the above

XSS is a attack in which the script is stored permanently on server. XSS attacks can be put into three categories: stored (also called persistent), reflected (also called non-persistent), or DOM-based. Stored XSS Attacks The injected script is stored permanently on the target servers. The victim then retrieves this malicious script from the server when the browser sends a request for data.

Q:5. Which of the following is true for DOM-based XSS attack ?

4.None of the above

DOM Based XSS (or as it is called in some texts, “type-0 XSS”) is an XSS attack wherein the attack payload is executed as a result of modifying the DOM “environment” in the victim’s browser used by the original client side script, so that the client side code runs in an “unexpected” manner. That is, the page itself (the HTTP response that is) does not change, but the client side code contained in the page executes differently due to the malicious modifications that have occurred in the DOM environment.

Comments

Post a Comment

Popular posts from this blog

COMMOM BUS SYSTEM USING MULTIPLEXER

Image
                                                  COMMON BUS SYSTEM USING MULTIPLEXER                                CHECK OUT THE STATEMENTS WRITTEN  ON RIGHTMOST SIDE The construction of this bus system for 4 registers is shown above. The bus consists of 4×1 multiplexers with 4 inputs and 1 output and 4 registers with bits numbered 0 to 3. There are 2 select inputs S0 and S1 which are connected to the select inputs of the multiplexers. The output 1 of register A is connected to input 0 of MUX 1 and similarly other connections are made as shown in the diagram. The data transferred to the bus depends upon the select lines. A table for the various combinations of select lines is shown below.   As we can see that when S1S0=00, register A is selected because on 00 the 0 data inputs of all the multiplexers are applied to the common bus. Since the 0 data inputs of all the multiplexers receive the inputs from the register A, thus register A gets selected. Similarly for other co
Read more

HOW BASIC COMPUTER WORKS USING COMMON BUS SYSTEM

Image
  Common Bus System The basic computer has eight registers , a memory unit, and a control unit . Paths must be provided to transfer information from one register to another and between memory and registers. The number of wires will be excessive  if connections are made between the outputs of each register and the inputs of the other registers. A more efficient  scheme for transferring information in a system with many registers is to use a common bus. The connection of the registers  and memory of the basic computer to a common bus system is shown in Fig. below. The outputs of seven registers and memory are connected to the common bus. The specific output  that is selected for the bus lines at any given time is determined from the binary value of the selection variables S 2 , S 1 , and S 0 . The number along  each output shows the decimal equivalent of the required binary selection. For example, the number along the output of DR is 3. The 16-bit outputs of DR  are placed on the bus lin
Read more