Examice

Exam SPLK-2001 All QuestionsBrowse all questions from this exam

Question 15

What application security best practices should be adhered to while developing an app for Splunk? (Select all that apply.)

Review the OWASP Top Ten List.

Store passwords in clear text in .conf files.

Review the OWASP Secure Coding Practices Quick Reference Guide.

Ensure that third-party libraries that the app depends on have no outstanding CVE vulnerabilities.

Correct Answer: A, C, D

When developing an application for Splunk, it is crucial to adhere to security best practices to ensure the app's integrity and protect user data. Reviewing the OWASP Top Ten List helps identify the most critical security risks, making it a valuable practice. Similarly, using the OWASP Secure Coding Practices Quick Reference Guide provides comprehensive guidelines for secure coding to minimize vulnerabilities in the codebase. Additionally, ensuring that third-party libraries have no outstanding CVE (Common Vulnerabilities and Exposures) vulnerabilities is essential to prevent the inclusion of known security flaws that could compromise the application. Storing passwords in clear text in .conf files is inherently insecure and should be avoided.

Discussion

New_userOptions: ACD

Answer is ACD. D s also included to the list accessable by provided link

shabamichaelOptions: AC

Yes ACD is the answer A. Review the OWASP Top Ten List. C. Review the OWASP Secure Coding Practices Quick Reference Guide. D. Ensure that third-party libraries that the app depends on have no outstanding CVE vulnerabilities.

qtygbapjpesdayazko

ACD, this is the way

aninhapipolOptions: AC

It's ACD.

gsplunkerOptions: AC

Yes ACD is the answer

shabamichaelOptions: AC

The answer is AC, because it is during development