Web Application Security: Securesphere Web Application Firewall! Trivia Quiz
.
- 1.The attack type that sends database commands from external web pages to execute on the back-end database is called:
- A.
DBA substitution
- B.
SQL injection
- C.
Malware attack
- D.
DB Flooding
- 2.The SecureSphere Web App Firewall automatically learns application URLs, directories, HTTP methods, parameters, cookies, form fields, and expected user behavior. This patent pending capability is called:
- A.
Attack Aware
- B.
SQL Barrier
- C.
SecureApp
- D.
Dynamic Profiling
- 3.Because SecureSphere integrates with vulnerability assessment tools, it can instantly patch vulnerabilities. This eliminates the window of exposure and impact of manual fix-and-test methods.
- A.
True
- B.
False
- 4.What is the main purpose of the Imperva Application Defense Center (ADC)?
- A.
Update sales and marketing documents with the latest SecureSphere features
- B.
Catch attacks as they occur and phone DB administrators to notify them that a threat exists
- C.
Analyze attacks as they occur and automatically distribute defense solutions to SecureSphere installations
- D.
Handle customer support calls on configuring SecureSphere
- 5.What is the name of the Imperva product that globally tracks and blocks known malicious users and sites?
- A.
EarlyWarning Service (EWS)
- B.
ThreatJammer 3000
- C.
ThreatRadar Reputation Services
- D.
PingBlocker
- 6.SecureSphere cannot be “dropped in” to an existing, running network — it must first be manually trained before it can begin working.
- A.
True. SecureSphere requires days or weeks to learn application traffic and prevent attacks.
- B.
False. SecureSphere immediately stops attacks with multiple layers of defense including attack signatures, user reputation controls, protocol validation and bot mitigation rules. SecureSphere also learns application structure and user behavior; this patented learning capability is completely automated and takes effect after several days of initial deployment.
Back to top