Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Isc Discussions
exam questions

Exam CISSP All Questions

View all questions & answers for the CISSP exam
Go to Exam

Exam CISSP topic 1 question 482 discussion

Actual exam question from ISC's CISSP
Question #: 482
Topic #: 1
[All CISSP Questions]

An application developer is deciding on the amount of idle session time that the application allows before a timeout. Which of the following is the BEST reason for determining the session timeout requirement?

  • A. Application requirements
  • B. Industry best practices
  • C. Industry feedback
  • D. Management feedback
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by user009 at Feb. 27, 2023, 11:32 a.m.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
Rollingalx
Highly Voted 1 year, 8 months ago
I go with A Best practices are not always applicable to every situation and may not always be the most appropriate solution. Therefore it's important to understand the unique requirements of the application and its users to ensure that the session timeout is set appropriately.
upvoted 8 times
jackdryan
1 year, 6 months ago
A is correct
upvoted 1 times
...
...
user009
Highly Voted 1 year, 9 months ago
(Option B) is the BEST reason for determining the session timeout requirement for an application. Industry best practices provide guidance on what has worked well for other applications in similar contexts and can be an important consideration in determining the session timeout requirement. However, it is also important to consider the needs of the specific application and its users to ensure that the session timeout is set appropriately.
upvoted 5 times
...
emadhn
Most Recent 7 months, 4 weeks ago
I would go with A
upvoted 1 times
...
Soleandheel
11 months, 1 week ago
A. Application requirements. The amount of idle session time allowed before a timeout should primarily be determined based on the specific requirements of the application and its users. The application's unique functionality, security needs, and user expectations should drive the decision on session timeout requirements.
upvoted 2 times
...
Marzie
1 year, 7 months ago
Selected Answer: A
Its surely dependent on the classification of the data within the application? Id go A
upvoted 1 times
...
emrys
1 year, 8 months ago
Selected Answer: A
Determining the session timeout requirement for an application based on its specific requirements is the best approach because it ensures that the timeout setting will be appropriate for the application's particular security and usability needs.
upvoted 2 times
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel