Harold is developing software for the company he works for to aid in their human resources and payroll procedures. Harold is almost done working on the program, currently working in the testing phase. Since Harold's supervisors and the company executives are going to consider this a mission critical program, they want it to be tested to the fullest. Harold decides to test the program using higher than normal simulated loads and requests.
What type of testing is Harold performing against his program?
A. Load test
B. Stress test
C. User acceptance test
D. Load-pressure test
What will the following script accomplish?
for (int i=0; i if (HttpCookie.domainMatches(blacklist[i], host)) return false; A. Create a list of blacklist domains B. Check domains against a blacklist C. Prevent site from being blacklisted D. Delete entries in a blacklist file
What type of error will result from the following statement?
int main(int argc, char* argv[])
{
char i[7];
strncpy(i, "sdfusdofof", sizeof(i));
}
A. Unbounded string copy
B. Null-termination
C. String-termination
D. String truncation
Kyle is a web developer for Innovative Incorporated, a web development and graphics designing company in Dallas. Kyle is currently working on a web-based application for a client that wants dynamic and rich content on their site. Kyle is going to use java applets and flash animation to make the website really stand out. The client was adamant though about making sure the site used security features to ensure that the site itself and visitors alike would not have issues.
What Java security feature can Kyle use in the development of the site to add security?
A. Sandbox
B. JavaScan
C. Java quarantine
D. Limbo
What will the following command accomplish? c:\signtool12winnt\signtool -L -d a:\tmpcert:a:\cert
A. Save certificate to a temporary archive directory
B. Sign Java applet
C. Verify archive
D. Determine certificate nickname
Mathew is working on a Fedora machine and is having issues with some shellcode he wrote that is producing errors. Mathew decides to download and use Ktrace to debug the shellcode to see where the errors are originating from.
Why will his plan not work?
A. Ktrace cannot debug errors, it only notifies of successful calls
B. Ktrace only works on Windows platforms
C. Ktrace cannot debug shellcode
D. Ktrace only works on *BSD platforms
Neil is almost finished developing a Web-based inventorytracking application for a company he is working for under contract. Neil finds out that the company wants to pay him half of what they had agreed upon so he is very angry. Neil
decides to insert the following code into his application.
What is Neil trying to create here?
#include
#include
int main(int argc, char *argv[])
{
char buffer[10];
if (argc < 2)
{
fprintf(stderr, "USAGE: %s
string\n", argv[0]);
return 1;
}
strcpy(buffer, argv[1]);
return 0;
}
A. UML malformed string
B. Format string bug
C. Buffer underflow
D. Buffer overflow
What programming threat model with six categories includes repudiation, spoofing identity, information disclosure and so on?
A. GUID threat model
B. STRIDE threat model
C. EUID threat model
D. GUILDE threat model
Jay is using the EnTrial Key Generator software to create software keys for the programs he has created. To create the unlock key in the software, what two inputs must Jay use?
A. Vector markup ID
B. Personal ID
C. GUID
D. Generated code
George is the CIO for the US Department of Defense. George's education and work experience cover everything from Systems Administration to developing complex software programs for the government. With many new federal regulations put forth by the US Department of Homeland Security, every single aspect of George's control must be secured and protected from attack. George is currently looking to purchase customized communications software for sending instant messages to branches of the DoD all over the world.
What set of security standards should George ensure the software he purchases be developed under?
A. Common Criteria
B. ISO 199776
C. Code Containment
D. Code Access Security
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 312-92 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.