WGU D430/ C836 Fundamentals of Information Security -
Proficiency knowledge test Exam Questions and certified
Answers Designed for revision purposes 2025/2026
Explain the difference between a vulnerability and a threat. correct answer
Vulnerability is weaknesses in the system.
Threat is something that has the potential to cause harm by exploiting the weaknesses
in the system
What are 6 items that might be considered logical controls correct answer
1) Passwords
2) Encryption
3) Access Controls
4) Firewalls
5) Intrusion Detection Systems
What terms might you use to describe the usefulness of data correct answer Utility
Which category of attack is an attack against confidentiality correct answer
Person looking over your shoulder
Email attachment sent to the wrong person
Attacker penetrating a system
How do you know at what point you can consider your environment is secure correct
answer When everything is powered off, unplugged, but even then you aren't fully
secured
, Using the concept of defense in depth, what layers might you use to secure yourself
against someone removing confidential data from your environment on a USB flash
drive correct answer Internal Layer, Host, Application, Data.
Based on Parkerian hexad, what principles are affected if you lose a shipment of
encrypted backup tapes that contain personal and payment information for your
customers correct answer
Possession/Control
Confidentiality
Access
Integrity
Authenticity
If the web servers in your environment are based on Microsoft's Internet Information
Services (IIS) and a new worm is discovered that attacks Apache web servers, what do
you not have correct answer Breach
If you develop a new policy for your environment that requires you to use complex and
automatically generated passwords that unique to each system and are a min of 30
characters in length, what will be adversely impacted correct answer Integrity and
Confidentiality
Considering the CIA triad and the Parkerian hexad, what are the advantages and
disadvantages of each model correct answer
CIA advantages allows us to discuss security issues with more detail.
CIA disadvantages, could be found too restrictive to describe the entire situation
Parkerian Hexad advantages builds off the CIA and implements 3 more points:
Possession/Control, Authenticity and Utility, allowing less restriction on a situation
Proficiency knowledge test Exam Questions and certified
Answers Designed for revision purposes 2025/2026
Explain the difference between a vulnerability and a threat. correct answer
Vulnerability is weaknesses in the system.
Threat is something that has the potential to cause harm by exploiting the weaknesses
in the system
What are 6 items that might be considered logical controls correct answer
1) Passwords
2) Encryption
3) Access Controls
4) Firewalls
5) Intrusion Detection Systems
What terms might you use to describe the usefulness of data correct answer Utility
Which category of attack is an attack against confidentiality correct answer
Person looking over your shoulder
Email attachment sent to the wrong person
Attacker penetrating a system
How do you know at what point you can consider your environment is secure correct
answer When everything is powered off, unplugged, but even then you aren't fully
secured
, Using the concept of defense in depth, what layers might you use to secure yourself
against someone removing confidential data from your environment on a USB flash
drive correct answer Internal Layer, Host, Application, Data.
Based on Parkerian hexad, what principles are affected if you lose a shipment of
encrypted backup tapes that contain personal and payment information for your
customers correct answer
Possession/Control
Confidentiality
Access
Integrity
Authenticity
If the web servers in your environment are based on Microsoft's Internet Information
Services (IIS) and a new worm is discovered that attacks Apache web servers, what do
you not have correct answer Breach
If you develop a new policy for your environment that requires you to use complex and
automatically generated passwords that unique to each system and are a min of 30
characters in length, what will be adversely impacted correct answer Integrity and
Confidentiality
Considering the CIA triad and the Parkerian hexad, what are the advantages and
disadvantages of each model correct answer
CIA advantages allows us to discuss security issues with more detail.
CIA disadvantages, could be found too restrictive to describe the entire situation
Parkerian Hexad advantages builds off the CIA and implements 3 more points:
Possession/Control, Authenticity and Utility, allowing less restriction on a situation
