Secure Software Lifecycle Professional – CSSLP – Question156

Which of the following statements are true about declarative security? Each correct answer represents a complete solution. Choose all that apply.

A.
It is employed in a layer that relies outside of the software code or uses attributes of the code.
B. It applies the security policies on the software applications at their runtime.
C. In this security, authentication decisions are made based on the business logic.
D. In this security, the security decisions are based on explicit statements.

Correct Answer: ABD

Explanation:

Explanation: Declarative security applies the security policies on the software applications at their runtime. In this type of security, the security decisions are based on explicit statements that confine security behavior. Declarative security applies security permissions that are required for the software application to access the local resources and provides role-based access control to an individual software component and software application. It is employed in a layer that relies outside of the software code or uses attributes of the code. Answer: C is incorrect. In declarative security, authentication decisions are coarse-grained in nature from an operational or external security perspective.