Written by students who passed Immediately available after payment Read online or as PDF Wrong document? Swap it for free 4.6 TrustPilot
logo-home
Exam (elaborations)

D488 | D488 Cybersecurity Architecture and Engineering Exam 3 | Questions with Correct Answers and Expert Explanation for Each Question | WGU

Rating
-
Sold
-
Pages
38
Grade
A+
Uploaded on
29-04-2026
Written in
2025/2026

D488 | D488 Cybersecurity Architecture and Engineering Exam 3 | Questions with Correct Answers and Expert Explanation for Each Question | WGU

Institution
Course

Content preview

D488 | D488 Cybersecurity Architecture and
Engineering Exam 3 Version 2 Questions with
Correct Answers and Expert Explanation for Each
Question
1. Which component of Identity and Access Management (IAM) is responsible for

ensuring that a user is who they claim to be?

A. Authorization


B. Auditing


C. Accounting


D. Authentication


Correct Answer: D


Expert Explanation: Authentication is the process of verifying the identity of a

user, device, or system. It typically involves checking credentials such as passwords,

tokens, or biometric data against a stored record. This step occurs before a user is

granted any permissions within the system environment. Without robust

authentication, the integrity of the entire access control system is compromised. It

serves as the first line of defense in protecting organizational resources from

unauthorized access.

,2. An organization implements a policy where users must provide a password and a

fingerprint scan to log in. What type of security control is this?

A. Single-factor authentication


B. Discretionary access control


C. Multi-factor authentication


D. Attribute-based access control


Correct Answer: C


Expert Explanation: Multi-factor authentication (MFA) requires users to provide

two or more different categories of credentials. In this scenario, the password

represents something the user knows, while the fingerprint is something the user is.

By requiring multiple factors, the security posture is significantly strengthened

against credential theft. This approach ensures that even if one factor is

compromised, the attacker still lacks the other required credentials. MFA is a core

requirement in modern cybersecurity frameworks to mitigate identity-related risks.


3. Which access control model assigns permissions based on the specific job functions

of an individual within an organization?

A. ABAC


B. MAC


C. DAC

,D. RBAC


Correct Answer: D


Expert Explanation: Role-Based Access Control (RBAC) simplifies management by

grouping permissions into roles that correspond to job duties. Users are then

assigned to these roles rather than having permissions managed on an individual

basis. This model reduces administrative overhead and ensures consistency across

the organization. It is highly effective in large enterprises where employees

frequently change positions or departments. RBAC helps maintain the principle of

least privilege by ensuring roles only have necessary access rights.


4. In the context of biometrics, what does the Crossover Error Rate (CER) represent?

A. The speed at which a user is authenticated


B. The total number of users stored in the database


C. The point where False Rejection Rate and False Acceptance Rate are equal


D. The percentage of failed login attempts over time


Correct Answer: C


Expert Explanation: The Crossover Error Rate (CER) is a critical metric used to

evaluate the overall accuracy of a biometric system. It identifies the specific point

where the rate of false positives equals the rate of false negatives. A lower CER

indicates a more accurate and reliable biometric sensor or algorithm. Organizations

, use this metric to compare different biometric products during the procurement

phase. Balancing these two error types is essential for maintaining both security and

user convenience.


5. Which principle dictates that users should only have the minimum level of access

necessary to perform their job functions?

A. Implicit Deny


B. Need to Know


C. Least Privilege


D. Separation of Duties


Correct Answer: C


Expert Explanation: The Principle of Least Privilege (PoLP) is a fundamental

security concept focused on limiting access rights for users. It ensures that any user,

program, or process has only the bare minimum privileges required to complete its

task. By restricting access, organizations can limit the potential damage caused by

accidents or malicious actions. This principle is vital for reducing the attack surface

and containing potential security breaches. Implementing PoLP requires continuous

monitoring and regular reviews of user permissions.

Written for

Institution
Course

Document information

Uploaded on
April 29, 2026
Number of pages
38
Written in
2025/2026
Type
Exam (elaborations)
Contains
Questions & answers

Subjects

$16.99
Get access to the full document:

Wrong document? Swap it for free Within 14 days of purchase and before downloading, you can choose a different document. You can simply spend the amount again.
Written by students who passed
Immediately available after payment
Read online or as PDF


Also available in package deal

Get to know the seller

Seller avatar
Reputation scores are based on the amount of documents a seller has sold for a fee and the reviews they have received for those documents. There are three levels: Bronze, Silver and Gold. The better the reputation, the more your can rely on the quality of the sellers work.
ScholarsAscend Rasmussen College
Follow You need to be logged in order to follow users or courses
Sold
372
Member since
2 year
Number of followers
39
Documents
26473
Last sold
1 day ago

3.9

66 reviews

5
34
4
11
3
10
2
1
1
10

Recently viewed by you

Why students choose Stuvia

Created by fellow students, verified by reviews

Quality you can trust: written by students who passed their tests and reviewed by others who've used these notes.

Didn't get what you expected? Choose another document

No worries! You can instantly pick a different document that better fits what you're looking for.

Pay as you like, start learning right away

No subscription, no commitments. Pay the way you're used to via credit card and download your PDF document instantly.

Student with book image

“Bought, downloaded, and aced it. It really can be that simple.”

Alisha Student

Working on your references?

Create accurate citations in APA, MLA and Harvard with our free citation generator.

Working on your references?

Frequently asked questions