A security analyst is inspecting pseudocode of the following multithreaded appli

Question

A security analyst is inspecting pseudocode of the following multithreaded application: 1. perform daily ETL of data 1.1 validate that yesterday's data model file exists 1.2 validate that today's data model file does not exist 1.2 extract yesterday's data model 1.3 transform the format 1.4 load the transformed data into today's data model file 1.5 exit following security concerns is evident in the above pseudocode? Time of checktime of use Resource exhaustion Improper storage of sensitive data Privilege escalation ? ? O D

Explanation / Answer

Answer)

ETL is extract, transform, and load of data into the data warehouse.

The security concern in which the above pseudocode can suffer is :

A. Time of check/ time of use.

This is a software attacking mechanism in which the attacker can cause changes to the system between the checking of a condition such that whether the file exists or not and the result of that checking. The attacker can run malicious code between the steps to gain improper access and damage the system.

Related Questions

Navigate

• Browse (All)
• Browse A
• Subjects

---

---

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.