What is the primary solution to protect against cross-site request forgery attacks?

Defusing GET requests and using anti-CSRF cookies

Requiring reauthentication for all actions

Implementing anti-virus software

What is the primary vulnerability that attackers exploit in cross-site request forgery attacks?

GET requests that changes server state

What is the purpose of using anti-CSRF cookies to validate HTTP requests made from JavaScript?

To protect against requests using other HTTP verbs

To verify that POST requests originate from pages hosted on the same web domain

What is the purpose of using Content Security Policy (CSP) in web applications?

To restrict the types of content that can be loaded on a web page

To authenticate users before granting access to the web application

To prevent cross-site scripting attacks

To encrypt sensitive data transmitted between the client and server

What is the primary purpose of using HTTP Strict Transport Security (HSTS) in web applications?

Make websites accessible only via secure connections

To restrict the types of content that can be loaded on a web page

To encrypt sensitive data transmitted between the client and server

To authenticate users before granting access to the web application

What is the purpose of using Cross-Origin Resource Sharing (CORS) in web development?

To alow resources to be requested from another domain

To prevent cross-site scripting attacks

To restrict the types of content that can be loaded on a web page

To authenticate users before granting access to the web application

What is the benefit of using Single Sign-On (SSO) in web applications?

To provide a unified authentication process for multiple systems

How does an anti-CSRF cookie help prevent CSRF attacks?

By ensuring that requests are only initiated within the same site

By preventing the use of cookies in HTML forms

By blocking al incoming requests to the server

By encrypting al communication between the browser and server

Why might setting the SameSite attribute to Strict on session cookies be problematic for users?

It strips the cookie of any requests from other websites.

It forces users to reconfirm their login details frequently.

It alows cross-site requests to send cookies.

It prevents users from logging in again.

Web Security Quiz

Authored by Christian Peña

Information Technology (IT)

University

Used 2+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

20 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is the term used for injecting JavaScript into a user's web browser through page elements like comment sections, search results, and URLs?

Cross-Site Request Forgery

SQL Injection

Cross-Site Scripting

Phishing

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What vulnerability do attackers exploit to steal Gmail contact lists, trigger one-click purchases on Amazon, and change router configuration?

Phishing

Cross-Site Request Forgery

SQL Injection

Cross-Site Scripting

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What design philosophy, recommends using GET requests only to fetch web pages or other resources?

SOAP

REST

GraphQL

RPC

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is the purpose of anti-CSRF cookies in protecting against CSRF attacks?

To validate HTTP requests made from JavaScript

To ensure that GET requests originate from the same domain

To force reauthentication for sensitive actions

To strip cookies on requests generated from external domains

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What attribute is specified when setting cookies to strip cookies on requests generated from external domains?

SameSite

Secure

Path

HttpOnly

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is the purpose of setting the SameSite attribute to Lax for cookies?

To prevent cookies from being accessed by JavaScript

To force reauthentication for sensitive actions

To alow sending of cookies from some cross site requests

To ensure cookies are sent only with requests initiated from within the same site

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is the benefit of requiring reauthentication for sensitive actions on a website?

To improve user experience

To alow seamless linking into the site

To add an additional layer of protection against CSRF attacks

To protect against cross-site scripting attacks

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

20 questions

LogoNOVA (FYIT Logo Quiz)

Quiz

•

University

15 questions

SOFAPP MIDTERM RECITATION

Quiz

•

University

15 questions

LibreOffice Writer Styles Quiz

Quiz

•

10th Grade - University

15 questions

ITEC101 - Quiz 2

Quiz

•

University

15 questions

ITEC101 - Lesson 1 - Quiz 1

Quiz

•

University

15 questions

Grade 6 - Living with AI

Quiz

•

6th Grade - University

22 questions

Internet and App script

Quiz

•

5th Grade - University

20 questions

ICC_Module_7

Quiz

•

University

Popular Resources on Wayground

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

54 questions

Analyzing Line Graphs & Tables

Quiz

•

4th Grade

$fractions$

22 questions

fractions

Quiz

•

3rd Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

15 questions

Equivalent Fractions

Quiz

•

4th Grade

Discover more resources for Information Technology (IT)

7 questions

How James Brown Invented Funk

Interactive video

•

10th Grade - University

5 questions

Helping Build the Internet: Valerie Thomas | Great Minds

Interactive video

•

11th Grade - University

12 questions

IREAD Week 4 - Review

Quiz

•

3rd Grade - University

23 questions

Subject Verb Agreement

Quiz

•

9th Grade - University

7 questions

Renewable and Nonrenewable Resources

Interactive video

•

4th Grade - University

19 questions

Review2-TEACHER

Quiz

•

University

15 questions

Pre2_STUDENT

Quiz

•

University

20 questions

Ch. 7 Quadrilateral Quiz Review

Quiz

•

KG - University