Which of the following is the LEAST effective at meeting the Fair Information Practice Principles (FIPPs) in the Systems Development Life Cycle (SDLC)?
A.
Defining requirements to manage end user content
B.
Conducting privacy threat modeling for the use-case
C.
Developing data flow modeling to help the purpose, protection, and retention of sensitive data
D.
Reviewing the code against Open Web Application Security Project (OWASP) Top 10 Security Risks
**D. Reviewing the code against Open Web Application Security Project (OWASP) Top 10 Security Risks**
**Explanation:** While reviewing the code against the OWASP Top 10 Security Risks is important for identifying and mitigating common security vulnerabilities, it is primarily focused on security rather than privacy. The Fair Information Practice Principles (FIPPs) are concerned with privacy aspects such as data collection, use, and protection. The other options are more directly aligned with implementing privacy principles within the Systems Development Life Cycle (SDLC), making **D** the least effective at specifically meeting FIPPs.
upvoted 1 times
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Ssourav
3 months, 1 week ago