Crucial Exams

ISC2 Certified Secure Software Lifecycle Professional (CSSLP) Practice Question

During verification and validation of the draft administrator guide for a payroll web service, you must flag any content that could undermine security. Which documentation issue requires remediation because it could disclose sensitive implementation details to an attacker even if the software itself is secure?

  • The troubleshooting section includes complete stack-trace examples that show class names and line numbers.

  • The guide states the service uses HTTPS on port 443 for all external traffic.

  • The release notes list the minimum browser versions the application supports.

  • An operations checklist reminds administrators to rotate encryption keys once a year.

ISC2 Certified Secure Software Lifecycle Professional (CSSLP)
Secure Software Testing
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot