1|Page
WGU D487 SECURE SW SOFTWARE DESIGN
EXAMINATION ACTUAL VERIFIED EXAM COMPLETE
QUESTIONS AND VERIFIED SOLUTIONS LATEST
UPDATE THIS YEAR||NEWEST EXAM!!!
Which phase in an SDLC helps to define the problem and
scope of any existing systems and determine the
objectives of new systems?
Requirements
Design
Planning
Testing - Answer-Planning
The planning stage sets the project schedule and looks at
the big picture.
What happens during a dynamic code review?
Programmers monitor system memory, functional
behavior, response times, and overall performance.
Customers perform tests to check software meets
requirements.
,2|Page
An analysis of computer programs without executing them
is performed.
Input fields are supplied with unexpected input and tested.
- Answer-Programmers monitor system memory, functional
behavior, response times, and overall performance.
How should you store your application user credentials in
your application database?
Use application logic to encrypt credentials
Store credentials as clear text
Store credentials using Base 64 encoded
Store credentials using salted hashes - Answer-Store
credentials using salted hashes
Hashing is a one-way process that converts a password to
ciphertext using hash algorithms. Password salting adds
random characters before or after a password prior to
hashing to obfuscate the actual password.
Which software methodology resembles an assembly-line
approach?
V-model
,3|Page
Agile model
Iterative model
Waterfall model - Answer-Waterfall model
Waterfall model is a continuous software development
model in which the development steps flow steadily
downwards.
Which software methodology approach provides faster
time to market and higher business value?
Iterative model
Waterfall model
V-model
Agile model - Answer-Agile model
In the agile model, projects are divided into small
incremental builds that provide working software at the
end of each iteration and adds value to business.
In Scrum methodology, who is responsible for making
decisions on the requirements?
Scrum Team
, 4|Page
Product Owner
ScrumMaster
Technical Lead - Answer-Product Owner
The Product Owner is responsible for
requirements/backlog items and prioritizing them.
What is the reason software security teams host discovery
meetings with stakeholders early in the development life
cycle?
To determine how much budget is available for new
security tools
To meet the development team
To refactor functional requirements to ensure security is
included
To ensure that security is built into the product from the
start - Answer-To ensure that security is built into the
product from the start
To correctly and cost-effectively introduce security into the
software development life cycle, it needs to be done early.
WGU D487 SECURE SW SOFTWARE DESIGN
EXAMINATION ACTUAL VERIFIED EXAM COMPLETE
QUESTIONS AND VERIFIED SOLUTIONS LATEST
UPDATE THIS YEAR||NEWEST EXAM!!!
Which phase in an SDLC helps to define the problem and
scope of any existing systems and determine the
objectives of new systems?
Requirements
Design
Planning
Testing - Answer-Planning
The planning stage sets the project schedule and looks at
the big picture.
What happens during a dynamic code review?
Programmers monitor system memory, functional
behavior, response times, and overall performance.
Customers perform tests to check software meets
requirements.
,2|Page
An analysis of computer programs without executing them
is performed.
Input fields are supplied with unexpected input and tested.
- Answer-Programmers monitor system memory, functional
behavior, response times, and overall performance.
How should you store your application user credentials in
your application database?
Use application logic to encrypt credentials
Store credentials as clear text
Store credentials using Base 64 encoded
Store credentials using salted hashes - Answer-Store
credentials using salted hashes
Hashing is a one-way process that converts a password to
ciphertext using hash algorithms. Password salting adds
random characters before or after a password prior to
hashing to obfuscate the actual password.
Which software methodology resembles an assembly-line
approach?
V-model
,3|Page
Agile model
Iterative model
Waterfall model - Answer-Waterfall model
Waterfall model is a continuous software development
model in which the development steps flow steadily
downwards.
Which software methodology approach provides faster
time to market and higher business value?
Iterative model
Waterfall model
V-model
Agile model - Answer-Agile model
In the agile model, projects are divided into small
incremental builds that provide working software at the
end of each iteration and adds value to business.
In Scrum methodology, who is responsible for making
decisions on the requirements?
Scrum Team
, 4|Page
Product Owner
ScrumMaster
Technical Lead - Answer-Product Owner
The Product Owner is responsible for
requirements/backlog items and prioritizing them.
What is the reason software security teams host discovery
meetings with stakeholders early in the development life
cycle?
To determine how much budget is available for new
security tools
To meet the development team
To refactor functional requirements to ensure security is
included
To ensure that security is built into the product from the
start - Answer-To ensure that security is built into the
product from the start
To correctly and cost-effectively introduce security into the
software development life cycle, it needs to be done early.
