Deck 11: Software Security

Security flaws occur as a consequence of sufficient checking and
validation of data and error codes in programs.

Software security is closely related to software quality and reliability.

Defensive programming requires a changed mindset to traditional
programming practices.

There is a problem anticipating and testing for all potential types of
non-standard inputs that might be exploited by an attacker to subvert a program.

Injection attacks variants can occur whenever one program invokes the
services of another program,service,or function and passes to it
externally sourced,potentially untrusted information without sufficient
inspection and validation of it.

To counter XSS attacks a defensive programmer needs to explicitly
identify any assumptions as to the form of input and to verify that any
input data conform to those assumptions before any use of the data.

An ASCII character can be encoded as a 1 to 4 byte sequence using
the UTF-8 encoding.

A difference between defensive programming and normal practices is
that everything is assumed.

The correct implementation in the case of an atomic operation is to
test separately for the presence of the lockfile and to not always attempt to create it.

Programmers often make assumptions about the type of inputs a
program will receive.

Cross-site scripting attacks attempt to bypass the browser's security
checks to gain elevated access privileges to sensitive data belonging to
another site.

Many computer security vulnerabilities result from poor programming
practices.

Without suitable synchronization of accesses it is possible that values
may be corrupted,or changes lost,due to over-lapping access,use, and replacement of shared values.

Key issues from a software security perspective are whether the
implemented algorithm correctly solves the specified problem,whether the machine instructions executed correctly represent the high level algorithm specification,and whether the manipulation of data values in variables is valid and meaningful.

To prevent XSS attacks any user supplied input should be examined
and any dangerous code removed or escaped to block its execution.

A number of widely used standard C _________ compound the problem of buffer overflow by not providing any means of limiting the amount of data transferred to the space available in the buffer.

_________ attacks are most commonly seen in scripted Web applications.

The process of transforming input data that involves replacing alternate,equivalent encodings by one common value is called _________.

"Failure to Preserve SQL Query Structure" is in the __________ CWE/SANS software error category.

A variant where the attacker includes malicious script content in data supplied to a site is the __________ vulnerability.

In the ________ attack the user supplied input is used to construct a SQL request to retrieve information from a database.

Program _______ refers to any source of data that originates outside the program and whose value is not explicitly known by the programmer when the code was written.

Two key areas of concern for any input are the _______ of the input and the meaning and interpretation of the input.

__________ programming is a form of design intended to ensure the continuing function of a piece of software in spite of unforeseeable usage of the software.

Program input data may be broadly classified as textual or ______.

If privileges are greater than those already available to the attacker the result is a _________.

UNIX related systems provide the chroot system function to limit a program's view of the file system to just one carefully configured section that is known as a ________.

The principle of ________ strongly suggests that programs should execute with the least amount of privileges needed to complete their function.

A ________ occurs when multiple processes and threads compete to gain uncontrolled access to some resource.

The major advantage of ________ is its simplicity and its freedom from assumptions about the expected input to any program,service,or function.