Web Application Security: Securesphere Web Application Firewall! Trivia Quiz

6 Questions

Settings
Please wait...
Web Application Security: Securesphere Web Application Firewall! Trivia Quiz

.


Questions and Answers
  • 1. 
    The attack type that sends database commands from external web pages to execute on the back-end database is called:
    • A. 

      DBA substitution

    • B. 

      SQL injection

    • C. 

      Malware attack

    • D. 

      DB Flooding

  • 2. 
    The SecureSphere Web App Firewall automatically learns application URLs, directories, HTTP methods, parameters, cookies, form fields, and expected user behavior. This patent pending capability is called:
    • A. 

      Attack Aware

    • B. 

      SQL Barrier

    • C. 

      SecureApp

    • D. 

      Dynamic Profiling

  • 3. 
    Because SecureSphere integrates with vulnerability assessment tools, it can instantly patch vulnerabilities. This eliminates the window of exposure and impact of manual fix-and-test methods.
    • A. 

      True

    • B. 

      False

  • 4. 
    What is the main purpose of the Imperva Application Defense Center (ADC)?
    • A. 

      Update sales and marketing documents with the latest SecureSphere features

    • B. 

      Catch attacks as they occur and phone DB administrators to notify them that a threat exists

    • C. 

      Analyze attacks as they occur and automatically distribute defense solutions to SecureSphere installations

    • D. 

      Handle customer support calls on configuring SecureSphere

  • 5. 
    What is the name of the Imperva product that globally tracks and blocks known malicious users and sites?
    • A. 

      EarlyWarning Service (EWS)

    • B. 

      ThreatJammer 3000

    • C. 

      ThreatRadar Reputation Services

    • D. 

      PingBlocker

  • 6. 
    SecureSphere cannot be “dropped in” to an existing, running network — it must first be manually trained before it can begin working.
    • A. 

      True. SecureSphere requires days or weeks to learn application traffic and prevent attacks.

    • B. 

      False. SecureSphere immediately stops attacks with multiple layers of defense including attack signatures, user reputation controls, protocol validation and bot mitigation rules. SecureSphere also learns application structure and user behavior; this patented learning capability is completely automated and takes effect after several days of initial deployment.