Test your basic knowledge |

CSSLP: Certified Secure Software Lifecycle Professional

Instructions:
  • Answer 50 questions in 30 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Non Repudiation






2. Single point failure






3. Auditing






4. Phsychological acceptability






5. Core Security Concept






6. General security concept






7. Vulnerabilities repositories






8. Safeguards






9. Properties of secure software






10. Security profile of a software






11. Single Loss Expectancy (SLE)






12. FIPS 197 (Advance Cryptographic standards - AES)






13. ISO/IEC 9216






14. Clipping level






15. Complete mediation






16. Benefits of coding standards






17. ISO /IEC 27000:2009






18. Accountability






19. NIST standards related to software security






20. Access Matrix model


21. OWASP Top 10






22. Annual Loss Expectancy (ALE)






23. ISO/IEC 27005:2008






24. Configurations Parameters Management






25. Economy of mechanism






26. ISO/IEC 27002:2005






27. Flaw Hypothesis Method (FHM)






28. Security Controls






29. ISO/IEC 27001:2005






30. OCTAVE






31. OWASP development guide






32. Total Risk






33. Authentication






34. Exposure factor (EF)






35. Common best practices significant to Sofware Security






36. Take-Grant Model






37. Security Risk Management Discipline






38. ISO/IEC 15408






39. ISO/IEC 27006:2007






40. Holistic Security in software






41. Multifactor authentication






42. Compartmentalization






43. Security Policies


44. Information Security Models






45. Integrity






46. STRIDE






47. Session Management






48. DREAD






49. Categories of controls






50. Counter measures