Performing CyberOps Using Cisco Security Technologies (CBRCOR) — Question 86

A security incident affected an organization's critical business services, and the customer-side web API became unresponsive and crashed. An investigation revealed a spike of API call requests and a high number of inactive sessions during the incident. Which two recommendations should the engineers make to prevent similar incidents in the future? (Choose two.)

Answer options

• A. Configure shorter timeout periods.
• B. Determine API rate-limiting requirements.
• C. Implement API key maintenance.
• D. Automate server-side error reporting for customers.
• E. Decrease simultaneous API responses.

Correct answer: A, B

Explanation

Configuring shorter timeout periods (A) helps to free up resources more quickly, preventing overload during peak usage. Determining API rate-limiting requirements (B) allows the organization to control the number of requests per user, which can mitigate the risk of spikes in API requests. The other options, while useful for different aspects of API management, do not directly address the issue of handling high volumes of requests effectively.