AND-402 - Android Security Essentials
Go back to
Google
Example Questions
Which of the following is to execute complex queries in SQLite database?
SQLiteQueryBuilder
Which of the following is NOT true about the “killAfterRestore” attribute of the <application> tag?
It means that whether the application should be terminated after its settings have been restored during an application restore operation.
Which of the following is NOT true about package attribute of manifest tag?
It may contain lowercase letters, numbers and underscores but not uppercase letters.
Which of the following is NOT true about "restoreAnyVersion" attribute of <application> tag?
This is system level attribute and is used in rooted devices to restore any version of Android OS being used previously.
Which of the following is NOT true about the persistent attribute?
It is placed in manifest tag because it is a system property.
Which of the following is NOT required for backing up data on cloud storage?
The internet permission in the AndroidManifest file to communicate with the Google server.
Which of the following can be used to share a component among applications written by same author?
Custom permission
Which of the following is NOT true about “hasCode” attribute of <application> tag?
There is no such attribute “hasCode” because every application contains some code and settings false cannot be an option.
If credit card numbers and passwords are stored in device they should to be in
Hash Form
Which of the following is NOT true about the “enabled” attribute of the <application> tag?
To launch an activity from another activity this attribute must be specified in the launching activity’s <activity> tag.
Dangerous Permissions can cause real harm or damage to user’s Personal___________.
All choices are correct.
What is the visibility or accessibility level of the preference file created by application?
Both "By default it is private to the application that created it" and "It can be shared with other applications on same device" are correct.
What is the state of data stored in SD cards, device memory, back-end servers, or databases?
Data at rest
Which XML tag is used to To make use of protected features of the device?
<uses–permission>
Permissions can be added inside
AndroidManifest.xml.
Application can send permissions programmatically.
Yes
Which of the following permissions is most dangerous and can cause severe damage to Device?
BRICK
Which of the following is NOT true about “allowbackup” attribute of application tag? (Choose two)
If full system backup is made the application's data is saved via adb. This is in system's control and occurs in all cases whether the allowbackup has value true or false.
The default value of this attribute is false.
Normal permissions can be converted into namespace using?
Permission tree
Which of the following is NOT true about setting the “permission” attribute to tags?
The permission can only be included in application or manifest tags.
Which of the following is true about calling method getWritbleDatabase()?
SQLiteOpenHelper.onCreate() is only called when database is created for the first time.
Which Protocol is used to ensure data integrity in Android?
Secure Socket Layer (SSL)
Which of the following is the recommended standard to be followed in applications that process credit card numbers?
Payment card industry standard
Which permission listed below is a normal permission?
SET_WALLPAPER
What are the options that Android offers to store a text file
All are correct
Which of the following in NOT true about setting the attribute installLocation to value “internalOnly”? (Choose two)
If there is no space on the internal memory then the application gets installed on the external storage and moves back to internal storage as soon as the space is available. This is default behavior.
The application can be moved to external device storage if required.
Which of the following is true when the system is running low on memory?
Files in the cache memory of application are deleted.
Digital rights management (DRM) is access control technology for which of the following
Applications
Which of the following is NOT the event that is notified by LocationListener when getting the user's location?
onProviderChanged
What does the following line of code do? FileOutputStream fOut = openFileOutput("MyFile.txt", MODE_WORLD_READABLE);
The file MyFile.txt will be created in the /data/data/<application-path>/ files/ directory.
What are the permissions which are granted automatically without user’s approval called?
Normal Permission
Which of following work with OEM's to adapt security rules to suit their needs?
Carrier providers
Which of the following permissions is required to request auth tokens from Account Manager?
android.permission.USE_CREDENTIALS
How many level of protection are there in Permission?
Four.
The auth token is acquired in the form of
Bundle
Which of the following is protected by component level permissions? (Choose two)
Application & Components
Which of the following is a database tool included in Android SDK?
sqlite3.
Which of the following storage methods does Android offer to ensure secure data saving?
All are correct
Which of the following is NOT true about the “Process” attribute of the <application> tag?
It must be included in the manifest tag with the value of package name application.
Which of the following is NOT true about “TestOnly” attribute in <application> tag?
It is system level attribute so it is included in manifest tag.
Which of the following is correct about application level permissions?
They are required for an Application to perform its operations.
What is the validity of the data stored through shared preferences?
Data gets deleted when application is uninstalled.
What is the recommended use of BaseColumns._ID in SQLite database?
It should be used to include unique ID when content provider is being used.
Which of the following is NOT true about setting two applications to share same Linux ID?
The applications just need to be installed on single device, for checking their Linux ID, they need not to be running.
During transit , Data integrity ensures that data is
Not altered or modified
Which of the following is NOT true about “preferExternal” value given to the installLocation attribute of the <manifest> tag? (Choose two)
The application is installed on internal memory by default even if external memory is available
grantUriPermission is the child element of which tag?
<provider>
For the preference class to collect settings from UI, which of the following is required?
Preference class should extend PreferenceActivity
Which of the following is NOT true about manifest tag in AndroidManifest.xml? (Choose two)
This can be put inside the application tag.
It declares the component specific attributes.
Payment process in an application are always advisable to be performed by
Experienced payment gateway companies