Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Isc Discussions
exam questions

Exam CISSP All Questions

View all questions & answers for the CISSP exam
Go to Exam

Exam CISSP topic 1 question 58 discussion

Actual exam question from ISC's CISSP
Question #: 58
Topic #: 1
[All CISSP Questions]

Which technique helps system designers consider potential security concerns of their systems and applications?

  • A. Threat modeling
  • B. Manual inspections and reviews
  • C. Source code review
  • D. Penetration testing
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by ItsBananass at Sept. 13, 2022, 5:44 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
dev46
Highly Voted 2 years, 2 months ago
Threat Modeling such as STRIDE would cover pretty much all the security considerations S - Spoofing T - Tampering R - Repudiation I - Information Disclosure D - DDoS Attacks E - Elevation of privilege
upvoted 10 times
...
Kiplan
Highly Voted 2 years, 2 months ago
Selected Answer: A
A threat model is a structured representation of all the information that affects the security of an application. In essence, it is a view of the application and its environment through the lens of security https://owasp.org/www-community/Threat_Modeling#:~:text=A%20threat%20model%20is%20a,through%20the%20lens%20of%20security.
upvoted 9 times
jackdryan
1 year, 6 months ago
A is correct
upvoted 1 times
...
...
zilm0diafpinc
Most Recent 10 months, 3 weeks ago
A. the rest are simply does not sense
upvoted 1 times
...
Bach1968
1 year, 4 months ago
Selected Answer: A
Threat modeling is a proactive approach to identify and assess potential threats and vulnerabilities in a system or application during the design phase. It involves systematically analyzing the system architecture, identifying potential threats and attack vectors, and evaluating their potential impact. By understanding the potential threats and their likelihood, system designers can make informed decisions about implementing appropriate security controls and mitigations.
upvoted 2 times
...
ItsBananass
2 years, 2 months ago
I'm thinking "B". As in, Code Review...etc
upvoted 1 times
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel