______ model provides guidance on developing attack models. Software testing model Business continuity model Microsoft's STRIDE model Attack trees Which of the following is considered the most practical approach for creating abuse cases? Security research Brainstorming Code review Static analysis Which of the following is the most important criteria for a security tester? Quality assurance knowledge and experience Security knowledge and experience Software testing knowledge and experience Software coding knowledge and experience Which of the following is the most difficult category for security testing to handle? Requirements level Design level Coding level Maintenance level Which of the following is the most common software security testing practice? Unit testing Integration testing Regression testing Penetration testing Abuse cases are developed in which of the following software development phases? Requirements Design Coding Testing Penetration