Effective CISSP Questions

Your team is developing a user experience that invokes a RESTful API developed by the other in-house team using the federated identity. The API requires authentication invoked through GET https://api.WentzWu.com/user/{username}/{password}. Which of the following is correct? (Wentz QOTD)
A. The API is compliant with the RESTful style.
B. The API shall employ HTTP POST to enforce confidentiality.
C. The API shall not use the username and password for authentication.
D. The API has a vulnerability that can be identified only as early as in the testing phase.

Continue reading "CISSP PRACTICE QUESTIONS – 20210908"

Wentz Wu | September 9, 2021 at 1:47 pm | Categories: QOTD, Technology, 每日一題 | URL: https://wp.me/p2X0VJ-8CF
Comment