CompTIA Security+ (SY0-601) — Question 606

While assessing the security of a web application, a security analyst was able to introduce unsecure strings through the application input fields by bypassing client-side controls. Which of the following solutions should the analyst recommend?

Answer options

• A. Code signing
• B. Host-based intrusion detection system
• C. Secure cookies
• D. Server-side validation

Correct answer: D

Explanation

The correct answer is D, Server-side validation, as it ensures that input is verified on the server, preventing malicious data from being processed. The other options, while beneficial for various security aspects, do not directly address the issue of validating user input effectively against potential threats.