Multiple Choice
A software company is releasing a new mobile application to a broad set of external customers. Because the software company is rapidly releasing new features, it has built in an over-the-air software update process that can automatically update the application at launch time. Which of the following security controls should be recommended by the company's security architect to protect the integrity of the update process? (Choose two.)
A) Validate cryptographic signatures applied to software updates
B) Perform certificate pinning of the associated code signing key
C) Require HTTPS connections for downloads of software updates
D) Ensure there are multiple download mirrors for availability
E) Enforce a click-through process with user opt-in for new features
Correct Answer:
Verified
Correct Answer:
Verified
Q20: A software development manager is running a
Q21: An external red team is brought into
Q22: A security engineer is working to secure
Q23: A small firm's newly created website has
Q24: Which of the following describes a contract
Q26: An advanced threat emulation engineer is conducting
Q27: A company that has been breached multiple
Q28: A security engineer is assisting a developer
Q29: A recent assessment identified that several users'
Q30: A system owner has requested support from