Test your basic knowledge |

CSSLP: Certified Secure Software Lifecycle Professional

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Access Matrix model


2. Least common mechanism






3. Flaw Hypothesis Method (FHM)






4. Complete mediation






5. Security Controls






6. Management Controls






7. Security design principles






8. Examples of Security Standards






9. ISO/IEC 21827:2008






10. Residual Risk






11. Categories of controls






12. Authentication






13. ISO /IEC 27000:2009






14. Session Management






15. Counter measures






16. ISO/IEC 9216






17. Least privilege






18. OCTAVE






19. Non Repudiation






20. Take-Grant Model






21. Core Security Concept






22. Auditing






23. Economy of mechanism






24. Software security risk management methodologies






25. General security concept






26. Vulnerabilities repositories






27. Challenges in implementing auditing/logging






28. Properties of secure software






29. OWASP Top 10






30. OWASP testing guide






31. Vulnerability






32. Configurations Parameters Management






33. Open design






34. Safeguards






35. Confidentiality






36. ISO/IEC 27006:2007






37. Security Risk Management Discipline






38. ISO/IEC 27002:2005






39. Risk management process






40. Security Policies


41. Threat






42. FIPS 197 (Advance Cryptographic standards - AES)






43. NIST standards related to software security






44. EALs levels






45. Annual Loss Expectancy (ALE)






46. Information Security Models






47. ISO/IEC 15408






48. Clipping level






49. After identification step is...






50. Benefits of coding standards