Cross-site scripting (XSS) attacks are BEST prevented through:

CISA V2 0 Comments

Cross-site scripting (XSS) attacks are BEST prevented through:
A . application firewall policy settings.
B . a three-tier web architecture.
C . secure coding practices.
D . use of common industry frameworks.

Answer: C

Explanation:

Secure coding practices are the best way to prevent cross-site scripting (XSS) attacks, because they can ensure that the web application validates and sanitizes user input and output data to prevent malicious scripts from being executed on the web browser. XSS attacks are a type of web application vulnerability that exploit the lack of input validation or output encoding in web pages that accept user input or display dynamic content. Application firewall policy settings, a three-tier web architecture, and use of common industry frameworks are not effective controls to prevent XSS attacks, because they do not address the root cause of the vulnerability in the web application code.

References: CISA Review Manual (Digital Version), Chapter 5, Section 5.4.2

Latest CISA Dumps Valid Version with 2694 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download CISA PDF    CISA Questions Online Training
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments