Crucial Exams

ISC2 Certified Secure Software Lifecycle Professional (CSSLP) Practice Question

While creating security test cases for a PRNG that supplies encryption keys for a new web service, you must determine which property to validate first. Which characteristic is most critical to confirm that the generator delivers cryptographic-grade randomness before the application goes live?

  • Measure the generator's throughput to ensure it can produce 10 MB of random data per second under peak load.

  • Verify that the entropy collected for the initial seeding provides sufficient unpredictability, such as at least 256 bits for 256-bit security strength.

  • Run uniform-distribution tests to show every byte value appears within 0.5 % of expectation in a 1 GB sample.

  • Confirm that the generator can output more than 2^64 unique values before any repetition occurs.

ISC2 Certified Secure Software Lifecycle Professional (CSSLP)
Secure Software Testing
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot