CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Cisco®
  5. 350-901

Free 350-901 Exam Braindumps (page: 35)

Page 35 of 96
PDF with 383 Questions

While developing an application following the 12-factor app methodology, which approach should be used in the application for logging?

  1. Write a log to a file in the application directory.
  2. Write a log to a file in /var/log.
  3. Write the logs buffered to stdout.
  4. Write the logs unbuffered to stdout.

Answer(s): D



An application has initiated an OAuth authorization code grant flow to get access to an API resource on behalf of an end user.

Which two parameters are specified in the HTTP request coming back to the application as the end user grants access? (Choose two.)

  1. access token and a refresh token with respective expiration times to access the API resource
  2. access token and expiration time to access the API resource
  3. redirect URI a panel that shows the list of permissions to grant
  4. code that can be exchanged for an access token
  5. state can be used for correlation and security checks

Answer(s): D,E



A web application is susceptible to cross-site scripting.
Which two methods allow this issue to be mitigated? (Choose two.)

  1. Use only drop downs.
  2. Limit user input to acceptable characters.
  3. Encrypt user input on the client side.
  4. Use AES encryption to secure the script.
  5. Remove all HTML/XML tags from user input.

Answer(s): B,E



Why is end-to-end encryption deployed when exposing sensitive data through APIs?

  1. Data transfers are untraceable from source to destination.
  2. Data cannot be read or modified other than by the true source and destination.
  3. Server-side encryption enables the destination to control data protection.
  4. Traffic is encrypted and decrypted at every hop in the network path.

Answer(s): B



Page 35 of 96



Post your Comments and Discuss Cisco® 350-901 exam with other Community members:

Court commented on October 26, 2024
Wonderful study material. Very well written and up to date. I recommend this.
UNITED STATES
upvote

Walczak commented on January 22, 2023
The last update provided for this exam contains the same questions from the real exam. Good work guys.
AUSTRALIA
upvote