MW Security QUIZZ

A computer screen displaying security code and symbols, with elements representing application security like locks, passwords, and data encryption.

MW Security Quiz

Test your knowledge on application security best practices with our MW Security Quiz! This quiz is designed to help you learn and understand key concepts related to handling sensitive data, managing passwords, and securing applications.

11 engaging multiple-choice questions
Instant feedback on your choices
Improve your security skills

11 Questions3 MinutesCreated by SecuringData101

How application secrets should be saved ?

Use a cloud provider service (AWS Parameter Store for Ex) to save secrets

Save secrets in a config file in the local computer

Save secrets in config file under the project hosted in a versioning tool (Git/Svn)

Save secrets in a shared googlesheet document

I started working on developping a new functionnality, and I need some help, how can I proceed ?

I create the same project classes in my personal github and ask foreign poeple to contribute

I post the class code in stackoverflow and ask for help

I ask my colleagues for help

I need to manage my passwords properly, how can I do ?

I write them in a file on my computer

Post-It is the key !

If I cannot remember them all, I can use Keeper to store it securely

I need to work on data migration and will have access to client personal data, what should I do ?

Warn my manager and Have the file send by email, store it on my PC for the time I work on it, then delete the file on my PC

Contact your Projet Lead to check which tool can be used for the transfer and the storage but never store the fiel containing the data on my PC

Nothing, I'm not allowed to work on personnal data

I need to manage personal data or credentials in my DTO and want to trace it in application logs

Use toString method with all fields of my bean

Remove the sensitive fields from toString method Do not use unknown method to manage the logs

Use custom way to manage DTO without knowing the impact of the log behaviour

What is the role of Bitlocker ?

Lock your computer

Lock you passwords

Encrypt your disk

Encrypt your passwords

Which one of the following statements about a password is TRUE ?

It must be changed only if it is compromised.

Can be shared by email

Can contain First Name, date of birth

It should be changed regularly.

I want to make an authentication for end/technical users and I need to expose an API to transfer the credentials without displaying the sensitive data in the logs

Use the body of the HTTP method to send the credentials and remove the sensitive fields from toString method

Use POST verb with all params in the URL

Use GET verb without body

I'm exposing a web service that is consumed by an external third party. How can I secure it?

Give unlimited rate for my API consumer

Implement Oauth2 authentication to authenticate both application and end user

Rather use Http instead of https

Use shared password in the http header hardcoded in the class

What makes me safe using my computer ?

A good cup of tea/coffee, My favorite teddy bear, My warm slipper

Bitlocker activated. OS up-to-date. Anti-Virus running and up-to-date

A mask, My hydroalcoholic gel

MW Security QUIZZ

MW Security Quiz

More Quizzes