Crucial Exams

ISC2 Certified Secure Software Lifecycle Professional (CSSLP) Practice Question

During a design review of a new service-oriented architecture, the team plans to route all inter-service messages through a single, centrally hosted Enterprise Service Bus (ESB) that also performs authentication and authorization. As the security architect, which secure architecture principle is most directly jeopardized, and what design change would best mitigate the concern?

  • It creates a single point of failure; deploy redundant ESB nodes in active-active mode across multiple availability zones.

  • It violates the principle of least privilege; add fine-grained role assignments at each service endpoint.

  • It violates the principle of complete mediation; require the ESB to log every request and response.

  • It violates the principle of defense in depth; place a web application firewall in front of the ESB.

ISC2 Certified Secure Software Lifecycle Professional (CSSLP)
Secure Software Architecture and Design
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot