Implementing and Operating Cisco Security Core Technologies (SCOR) — Question 649

A website administrator wants to prevent SQL injection attacks against the company’s customer database, which is referenced by the web server. Which two methods help prevent SQL injection attacks? (Choose two.)

Answer options

• A. using load balancers with NAT
• B. performing input validation
• C. enforcing TLS 1.3 only
• D. using SSL certificates
• E. using web application firewalls

Correct answer: B, E

Explanation

The correct answers are B and E because performing input validation helps ensure that only properly formatted data is accepted, reducing the risk of SQL injection. Web application firewalls can detect and block malicious SQL queries before they reach the database. The other options, such as using load balancers, enforcing TLS, and using SSL certificates, do not specifically address SQL injection vulnerabilities.