ZuoTi.Pro
Question

A security architect is reviewing the code for a company’s financial website. The architect suggests adding the following HTML element, along with a server-side function, to generate a random number on the page used to initiate a funds transfer:

<input type=hidden name=token value=generateRandomNumber() >

Which of the following attacks is the security architect attempting to prevent?

A. SQL injection
B. XSRF
C. XSS
D. Clickjacking

FOR AN UPVOTE PLEASE PROVIDE AN EXPLANATION TO THE CORRECT OPTION CHOICE AS WELL AS WHY THE OTHE OPTION CHOICES ARE NOT CORRECT. THANK YOU

engineering   Computer-Science   
0 0
Add a comment Improve this question Transcribed image text
Next > < Previous
Sort answers by oldest

Homework Answers

Answer #1

Answer

B. XSRF

Explanation

XSRF means Cross-Site Request Forgery
XSRF is kind of attack used to where attacker tricks a user into performing actions on their behalf
As you can see the question security architect generating random number on the page used to initiate a funds transfer
So this will protect against XSRF
---

all the best

0 0
Add a comment
Know the answer?
Add Answer to:
A security architect is reviewing the code for a company’s financial website. The architect suggests adding...
Your Answer:

Post as a guest

Your Name:

What's your source?

Earn Coins

Coins can be redeemed for fabulous gifts.

Log In

Sign Up

Not the answer you're looking for? Ask your own homework help question. Our experts will answer your question WITHIN MINUTES for Free.
Similar Homework Help Questions
ADVERTISEMENT
Free Homework Help App
Download From Google Play
Scan Your Homework
to Get Instant Free Answers
Need Online Homework Help?
Ask a Question
Get Answers For Free
Most questions answered within 3 hours.
ADVERTISEMENT
ADVERTISEMENT
ADVERTISEMENT