Crucial Exams

ISC2 Certified Secure Software Lifecycle Professional (CSSLP) Practice Question

During an architecture review of a four-tier web application (presentation, business logic, data, and network/infrastructure), the team must align security controls with the Security Chain of Responsibility. Which pairing of control with layer BEST reflects this principle?

  • Presentation layer - key management; Business logic layer - routing decisions; Data layer - cross-site scripting filtering; Network layer - stored procedure enforcement

  • Presentation layer - output encoding; Business logic layer - authorization checks; Data layer - transparent encryption; Network layer - firewall packet filtering

  • Presentation layer - firewall packet filtering; Business logic layer - database backup; Data layer - output encoding; Network layer - user authentication

  • Presentation layer - packet encryption; Business logic layer - patch management; Data layer - session management; Network layer - input validation

ISC2 Certified Secure Software Lifecycle Professional (CSSLP)
Secure Software Architecture and Design
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot