Exam 350-401 topic 1 question 535 discussion

Actual exam question from Cisco's 350-401

Question #: 535
Topic #: 1

A system must validate access rights to all its resources and must not rely on a cached permission matrix. If the access level to a given resource is revoked but is not reflected in the permission matrix, the security is violated. Which term refers to this REST security design principle?

A. economy of mechanism
B. complete mediation
C. separation of privilege
D. least common mechanism

Show Suggested Answer

Suggested Answer: B 🗳️

by Joseph123 at Sept. 14, 2022, 7:08 p.m.

Comments

Submit Cancel

Cer_Pit

Highly Voted 1 year, 8 months ago

Selected Answer: B

B is correct. Complete Mediation: A system should validate access rights to all its resources to ensure that they’re allowed and should not rely on the cached permission matrix. If the access level to a given resource is being revoked, but that isn’t reflected in the permission matrix, it would violate the security. https://restfulapi.net/security-essentials/

upvoted 9 times

...

[Removed]

Most Recent 1 month, 2 weeks ago

Selected Answer: B

B is correct

upvoted 1 times

...

kewokil120

1 year, 6 months ago

Selected Answer: B

B is right.

upvoted 2 times

...

kebkim

1 year, 10 months ago

B. Complete Mediation: A system should validate access rights to all its resources to ensure that they're allowed and should not rely on the cached permission matrix. If the access level to a given resource is being revoked, but that isn't reflected in the permission matrix, it would violate the security.

upvoted 2 times

...

Joseph123

1 year, 10 months ago

Correct

upvoted 2 times

...

Exam 350-401 All Questions

View all questions & answers for the 350-401 exam

Exam 350-401 topic 1 question 535 discussion

Comments

Cer_Pit

[Removed]

kewokil120

kebkim

Joseph123

SY0-701