Exam Ref
Previous Question

Question 138

Next Question

5.5.2 Question

Multiple Choices

What are the primary differences between the AntiXSS Library and the default .NET Framework? (Choose all that apply.)

  • A. The AntiXSS Library takes a blocked-list approach, whereas the .NET Framework takes an accepted-list approach.
  • B. The AntiXSS Library has be modified to realize performance gains.
  • C. The AntiXSS Library takes an accepted-list approach, whereas the .NET Framework takes a blocked-list approach.
  • D. The AntiXSS Library offers enhanced globalization capabilities.

Answer:

BCD
Explanation
A. Incorrect: AntiXSS takes an accepted-list approach, which means only those char­acters that have been approved are allowed through.
B. Correct: The AntiXSS Library is more performant than the traditional .NET Framework.
C. Correct: AntiXSS takes an accepted-list approach, which means only those charac­ters that have been approved are allowed through.
D. Correct: AntiXSS was designed to allow additional support for globalization.