A security architect is reviewing the code for a company’s financial website. The architect suggests adding the following HTML element, along with a server-side function, to generate a random number on the page used to initiate a funds transfer:
Which of the following attacks is the security architect
attempting to prevent?
A. SQL injection
B. XSRF
C. XSS
D. Clickjacking
FOR AN UPVOTE PLEASE PROVIDE AN EXPLANATION TO THE CORRECT OPTION CHOICE AS WELL AS WHY THE OTHE OPTION CHOICES ARE NOT CORRECT. THANK YOU
Answer
B. XSRF
Explanation
XSRF means Cross-Site Request Forgery
XSRF is kind of attack used to where attacker tricks a user into
performing actions on their behalf
As you can see the question security architect generating random
number on the page used to initiate a funds transfer
So this will protect against XSRF
---
all the best
A security architect is reviewing the code for a company’s financial website. The architect suggests adding...