ExamTopics Logo
Mail Us[email protected]
Menu
Isc Discussions
exam questions

Exam CISSP All Questions

View all questions & answers for the CISSP exam
Go to Exam

Exam CISSP topic 1 question 368 discussion

Actual exam question from ISC's CISSP
Question #: 368
Topic #: 1
[All CISSP Questions]

Before allowing a web application into the production environment, the security practitioner performs multiple types of tests to confirm that the web application performs as expected. To test the username field, the security practitioner creates a test that enters more characters into the field than is allowed. Which of the following BEST describes the type of test performed?

  • A. Misuse case testing
  • B. Interface testing
  • C. Web session testing
  • D. Penetration testing
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by Cww1 at Sept. 13, 2022, 2:22 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
gjimenezf
8 months ago
Selected Answer: A
It is a misuse case,
upvoted 1 times
...
Vegetalex
11 months, 1 week ago
Selected Answer: B
B. Interface testing, in this context, involves testing the web application's user interface to ensure that it behaves as expected and handles user input correctly. In this case, it specifically focuses on testing the user interface elements related to the username field. The objective is to identify how the application responds when user input exceeds the specified character limit for that field. Misuse case testing (A) typically involves testing for known vulnerabilities or specific misuse scenarios. Web session testing (C) involves testing the management and security of user sessions within a web application. Penetration testing (D) is a broader type of testing that involves actively trying to exploit vulnerabilities in the application's security, which is not the primary focus of the described scenario.
upvoted 1 times
...
TommyZ
1 year, 5 months ago
Interface testing is a type of testing that is performed to evaluate the functionality of a web application's user interface. It involves testing the various elements of the user interface, such as buttons, fields, and menus, to ensure that they function as intended and that users can interact with the application in the expected way
upvoted 2 times
jackdryan
1 year, 4 months ago
A is correct
upvoted 1 times
...
...
rdy4u
1 year, 11 months ago
Selected Answer: A
A process used by software testers to evaluate the vulnerability of their software to known risks. Testers first enumerate the known misuse cases and then attempt to exploit those use cases with manual and/or automated attack techniques. Aka abuse case testing. https://www.sunflower-cissp.com/glossary/cissp/3609/misuse-case-testing
upvoted 3 times
...
stickerbush1970
2 years ago
Selected Answer: A
Agree with A
upvoted 4 times
...
Cww1
2 years ago
Correct
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago