B.S.W.E. Bachelor of Software Engineering Computer Networks & Security 2

Question 1

What is a SQL injection attack?

Accepted Answer

Inserting malicious SQL code into an input field to manipulate or exploit a database

Answer

SQL injection occurs when an attacker inserts malicious SQL statements into an input field that is directly incorporated into a database query, allowing unauthorized data access or manipulation.

Question 2

What does HTTPS provide that HTTP does not?

Accepted Answer

Encrypted communication using TLS, ensuring confidentiality and integrity

Answer

HTTPS uses TLS (Transport Layer Security) to encrypt data in transit, preventing eavesdropping, tampering, and ensuring the authenticity of the server.

Question 3

What is a firewall in network security?

Accepted Answer

A network security device or software that monitors and controls incoming and outgoing traffic based on defined rules

Answer

A firewall enforces a security policy by filtering network traffic based on rules, blocking unauthorized access while allowing legitimate communication.

Question 4

Which attack involves overwhelming a server with traffic to make it unavailable to legitimate users?

Accepted Answer

Denial-of-Service (DoS) attack

Answer

A DoS (Denial-of-Service) attack floods a target server with excessive requests, exhausting its resources and making it unavailable to legitimate users.

Question 5

What is Cross-Site Scripting (XSS)?

Accepted Answer

A vulnerability where an attacker injects malicious scripts into web pages viewed by other users

Answer

XSS allows attackers to inject malicious client-side scripts into web pages, which execute in victims' browsers to steal cookies, session tokens, or perform actions on the user's behalf.

B.S.W.E. Bachelor of Software Engineering Practice Test

B.S.W.E. Bachelor of Software Engineering Practice Test

B.S.W.E. Bachelor of Software Engineering Computer Networks & Security 2