ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 350-401 All Questions

View all questions & answers for the 350-401 exam
Go to Exam

Exam 350-401 topic 1 question 385 discussion

Actual exam question from Cisco's 350-401
Question #: 385
Topic #: 1
[All 350-401 Questions]

What is one primary REST security design principle?

  • A. fail-safe defaults
  • B. password hash
  • C. adding a timestamp in requests
  • D. OAuth
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by nushadu at Dec. 21, 2022, 12:31 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
aaabattery
Highly Voted 1 year, 9 months ago
Selected Answer: A
- Least Privilege - Fail-Safe Defaults - Economy of Mechanism - Complete Mediation - Open Design - Separation of Privilege - Least Common Mechanism - Psychological Acceptability https://medium.com/strike-sh/rest-security-design-principles-434bd6ee57ea
upvoted 8 times
...
16561f6
Most Recent 3 months, 1 week ago
The correct answer is D. OAuth. Explanation: One primary security design principle for REST APIs is OAuth, which is an open standard for access delegation commonly used as a way to grant websites or applications limited access to user information without exposing passwords. OAuth provides a secure and scalable approach to handling authentication and authorization for RESTful services.
upvoted 1 times
Neil101
5 days, 15 hours ago
If the question is asking for a REST API-specific security mechanism: The answer is D. OAuth. OAuth is a widely used framework for securing REST APIs, providing token-based authentication and authorization. If the question is asking for a general security design principle: The answer is A. Fail-safe defaults. Fail-safe defaults are a fundamental principle of secure design, ensuring that access is denied unless explicitly permitted. Hence, Answer is A.
upvoted 1 times
...
...
[Removed]
7 months, 2 weeks ago
Selected Answer: A
A is correct Fail-safe defaults involve designing systems in a way that even if specific security measures are not explicitly configured. This principle ensures that security is not accidentally compromised due to misconfigurations or oversight.
upvoted 2 times
...
nushadu
2 years ago
Selected Answer: A
Fail-Safe Defaults A user’s default access level to any resource in the system should be “denied” unless they have been granted a “permit” explicitly.
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago