ISC2 Certified Secure Software Lifecycle Professional (CSSLP) Practice Question
During test planning for a new fintech mobile application, the QA lead is instructed to include at least one functional security test for the login service. Which of the following activities would satisfy this directive?
Capturing baseline CPU overhead introduced by field-level encryption during peak load
Measuring end-to-end response time before and after enabling HSTS headers
Confirming that an account is locked after five consecutive failed authentication attempts
Submitting malformed JSON payloads to measure how the API throttles unusual traffic patterns
Functional security testing focuses on confirming that specific security mechanisms operate exactly as designed. Verifying that an account is locked after the defined number of failed login attempts directly tests an authentication control implemented in the software, so it is a functional security test. The other options evaluate performance or robustness characteristics (CPU overhead, response-time impact, or behavior under malformed traffic) and are therefore nonfunctional security tests rather than direct checks of security logic.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is functional security testing?
Open an interactive chat with Bash
Why is locking an account after multiple failed attempts considered a functional security test?
Open an interactive chat with Bash
What is the difference between functional and nonfunctional security testing?
Open an interactive chat with Bash
What is functional security testing?
Open an interactive chat with Bash
What distinguishes functional security testing from nonfunctional security testing?
Open an interactive chat with Bash
Why is locking an account after failed login attempts considered a functional security test?
Open an interactive chat with Bash
ISC2 Certified Secure Software Lifecycle Professional (CSSLP)
Secure Software Testing
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .