A development team releases updates to an application regularly. The application is compiled with several standard, open-source security products that require a minimum version for compatibility. During the security review portion of the development cycle, which of the following should be done to minimize possible application vulnerabilities?
A) The developers should require an exact version of the open-source security products, preventing the introduction of new vulnerabilities.
B) The application development team should move to an Agile development approach to identify security concerns faster.
C) The change logs for the third-party libraries should be reviewed for security patches, which may need to be included in the release
D) The application should eliminate the use of open-source libraries and products to prevent known vulnerabilities from being included
Correct Answer:
Verified
Q356: A security analyst for a bank received
Q357: A company recently experienced a security incident
Q358: A systems analyst is concerned that the
Q359: A Chief Information Security Officer (CISO) needs
Q360: Which of the following attacks can be
Q362: An international e-commerce company has identified attack
Q363: A hospital uses a legacy electronic medical
Q364: A security analyst is reviewing the following
Q365: A Chief Information Security Officer (CISO) recently
Q366: An organization is in the process of
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents