WGU MASTER'S COURSE C706 - SECURE SOFTWARE
d d d d d d
DESIGN EXAM LATEST 2024 ACTUAL EXAM 400 QUESTIONSA
d d d d d d d d
ND CORRECT DETAILED ANSWERS WITH RATIONALES (VERI
d d d d d d
FIED ANSWERS) |ALREADY GRADED A+
d d d d
Whatdisdadstepdfordconstructingdadthreatdmodeldfordadprojectdwhendusingdpracticaldriskdanalysis?
AdAligndyourdbusinessdgoals
BdApplydengineeringdmethods
CdEstimatedprobabilitydofdprojectdtime
DdMakedadlistdofdwhatdyoudaredtryingdtodprotectd-dANSWER-D
Whichdcyberdthreatsdaredtypicallydsurgicaldbydnature,dhavedhighlydspecificdtargeting,danddaredtechnologica
llydsophisticated?
AdTacticaldattacksd
BdCriminaldattacksd
CdStrategicdattacks
DdUser-specificdattacksd-dANSWER-A
Whichdtypedofdcyberattacksdaredoftendintendeddtodelevatedawarenessdofdadtopic?
Ad Cyberwarfared
BdTacticaldattacks
CdUser-specificdattacks
DdSociopoliticaldattacksd-dANSWER-D
Whatdtypedofdattackdlocksdaduser'sddesktopdanddthendrequiresdadpaymentdtodunlockdit?
AdPhishing
, WGU MASTER'S COURSE C706 - SECURE SOFTWARE
d d d d d d
DESIGN EXAM LATEST 2024 ACTUAL EXAM 400 QUESTIONSA
d d d d d d d d
ND CORRECT DETAILED ANSWERS WITH RATIONALES (VERI
d d d d d d
FIED ANSWERS) |ALREADY GRADED A+
d d d d
BdKeylogger
CdRansomware
DdDenial-of-serviced-dANSWER-C
WhatdisdadcountermeasuredagainstdvariousdformsdofdXMLdanddXMLdpathdinjectiondattacks?
AdXMLd named wrappingd
BdXMLdunicodedencoding
CdXMLdattributedescaping
DdXMLddistinguisheddnamedescapingd-dANSWER-C
WhichdcountermeasuredisduseddtodmitigatedSQLdinjectiondattacks?
AdSQLdFirewall
BdProjecteddbijection
CdQuerydparameterization
DdProgressivedColdFusiond-dANSWER-C
Whatdisdandappropriatedcountermeasuredtodandescalationdofdprivilegedattack?
AdEnforcingdstrongdpassworddpolicies
BdUsingdstandarddencryptiondalgorithmsdanddcorrectdkeydsizes
CdEnablingdthedauditingdanddloggingdofdalldadministrationdactivities
DdRestrictingdaccessdtodspecificdoperationsdthroughdrole-baseddaccessdcontrolsd-dANSWER-D
, WGU MASTER'S COURSE C706 - SECURE SOFTWARE
d d d d d d
DESIGN EXAM LATEST 2024 ACTUAL EXAM 400 QUESTIONSA
d d d d d d d d
ND CORRECT DETAILED ANSWERS WITH RATIONALES (VERI
d d d d d d
FIED ANSWERS) |ALREADY GRADED A+
d d d d
Whichdconfigurationdmanagementdsecuritydcountermeasuredimplementsdleastdprivilegedaccessdcontrol?
AdFollowingdstrongdpassworddpoliciesdtodrestrictdaccess
BdRestrictingdfiledaccessdtodusersdbaseddondauthorization
CdAvoidingdcleardtextdformatdfordcredentialsdanddsensitiveddata
DdUsingdAESd256dencryptiondfordcommunicationsdofdadsensitivednatured-dANSWER-B
Whichdphasedofdthedsoftwareddevelopmentdlifedcycled(SDL/SDLC)dwoulddbeduseddtoddeterminedthedmi
nimumdsetdofdprivilegesdrequireddtodperformdthedtargeteddtaskdanddrestrictdtheduserdtodaddomaindwithdt
hosedprivileges?
AdDesignd
BdDeploy
CdDevelopment
DdImplementationd-dANSWER-A
Whichdleastdprivilegedmethoddisdmoredgranulardindscopedanddgrantsdspecificdprocessesdonlydthedprivile
gesdnecessarydtodperformdcertaindrequireddfunctions,dinsteaddofdgrantingdthemdunrestricteddaccessdtodt
hedsystem?
AdEntitlementdprivilege
BdSeparationdofdprivilege
CdAggregationdofdprivileges
DdSegregationdofdresponsibilitiesd-dANSWER-B
Whyddoesdprivilegedcreepdposedadpotentialdsecuritydrisk?
, WGU MASTER'S COURSE C706 - SECURE SOFTWARE
d d d d d d
DESIGN EXAM LATEST 2024 ACTUAL EXAM 400 QUESTIONSA
d d d d d d d d
ND CORRECT DETAILED ANSWERS WITH RATIONALES (VERI
d d d d d d
FIED ANSWERS) |ALREADY GRADED A+
d d d d
AdUserdprivilegesddodnotdmatchdtheirdjobdrole.
BdWithdmoredprivileges,dtheredaredmoredresponsibilities.
CdAuditingdwilldshowdadmismatchdbetweendindividualdresponsibilitiesdanddtheirdaccessdrights.
DdUsersdhavedmoredprivilegesdthandtheydneeddanddmaydperformdactionsdoutsidedtheirdjobddescription.d
-dANSWER-D
Adsystemddeveloperdisdimplementingdadnewdsalesdsystem.dThedsystemddeveloperdisdconcerneddthatdunaut
horizeddindividualsdmaydbedabledtodviewdsensitivedcustomerdfinancialddata.
Whichdfamilydofdnonfunctionaldrequirementsdshoulddbedconsidereddasdpartdofdthedacceptancedcriteria?
AdIntegrity
BdAvailability
CdNonrepudition
DdConfidentialityd-dANSWER-D
Adprojectdmanagerdisdgivendthedtaskdtodcomedupdwithdnonfunctionaldacceptancedcriteriadrequirementsdf
ordbusinessdownersdasdpartdofdadprojectddelivery.
Whichdnonfunctionaldrequirementdshoulddbedapplieddtodthedacceptancedcriteria?
AdGivedsearchdoptionsdtodusers
BdEvaluatedtestdexecutiondresults
CdDividedusersdintodgroupsdanddgivedthemdseparatedrights
DdDevelopdsoftwaredthatdkeepsddownwarddcompatibilitydintactd-dANSWER-B
d d d d d d
DESIGN EXAM LATEST 2024 ACTUAL EXAM 400 QUESTIONSA
d d d d d d d d
ND CORRECT DETAILED ANSWERS WITH RATIONALES (VERI
d d d d d d
FIED ANSWERS) |ALREADY GRADED A+
d d d d
Whatdisdadstepdfordconstructingdadthreatdmodeldfordadprojectdwhendusingdpracticaldriskdanalysis?
AdAligndyourdbusinessdgoals
BdApplydengineeringdmethods
CdEstimatedprobabilitydofdprojectdtime
DdMakedadlistdofdwhatdyoudaredtryingdtodprotectd-dANSWER-D
Whichdcyberdthreatsdaredtypicallydsurgicaldbydnature,dhavedhighlydspecificdtargeting,danddaredtechnologica
llydsophisticated?
AdTacticaldattacksd
BdCriminaldattacksd
CdStrategicdattacks
DdUser-specificdattacksd-dANSWER-A
Whichdtypedofdcyberattacksdaredoftendintendeddtodelevatedawarenessdofdadtopic?
Ad Cyberwarfared
BdTacticaldattacks
CdUser-specificdattacks
DdSociopoliticaldattacksd-dANSWER-D
Whatdtypedofdattackdlocksdaduser'sddesktopdanddthendrequiresdadpaymentdtodunlockdit?
AdPhishing
, WGU MASTER'S COURSE C706 - SECURE SOFTWARE
d d d d d d
DESIGN EXAM LATEST 2024 ACTUAL EXAM 400 QUESTIONSA
d d d d d d d d
ND CORRECT DETAILED ANSWERS WITH RATIONALES (VERI
d d d d d d
FIED ANSWERS) |ALREADY GRADED A+
d d d d
BdKeylogger
CdRansomware
DdDenial-of-serviced-dANSWER-C
WhatdisdadcountermeasuredagainstdvariousdformsdofdXMLdanddXMLdpathdinjectiondattacks?
AdXMLd named wrappingd
BdXMLdunicodedencoding
CdXMLdattributedescaping
DdXMLddistinguisheddnamedescapingd-dANSWER-C
WhichdcountermeasuredisduseddtodmitigatedSQLdinjectiondattacks?
AdSQLdFirewall
BdProjecteddbijection
CdQuerydparameterization
DdProgressivedColdFusiond-dANSWER-C
Whatdisdandappropriatedcountermeasuredtodandescalationdofdprivilegedattack?
AdEnforcingdstrongdpassworddpolicies
BdUsingdstandarddencryptiondalgorithmsdanddcorrectdkeydsizes
CdEnablingdthedauditingdanddloggingdofdalldadministrationdactivities
DdRestrictingdaccessdtodspecificdoperationsdthroughdrole-baseddaccessdcontrolsd-dANSWER-D
, WGU MASTER'S COURSE C706 - SECURE SOFTWARE
d d d d d d
DESIGN EXAM LATEST 2024 ACTUAL EXAM 400 QUESTIONSA
d d d d d d d d
ND CORRECT DETAILED ANSWERS WITH RATIONALES (VERI
d d d d d d
FIED ANSWERS) |ALREADY GRADED A+
d d d d
Whichdconfigurationdmanagementdsecuritydcountermeasuredimplementsdleastdprivilegedaccessdcontrol?
AdFollowingdstrongdpassworddpoliciesdtodrestrictdaccess
BdRestrictingdfiledaccessdtodusersdbaseddondauthorization
CdAvoidingdcleardtextdformatdfordcredentialsdanddsensitiveddata
DdUsingdAESd256dencryptiondfordcommunicationsdofdadsensitivednatured-dANSWER-B
Whichdphasedofdthedsoftwareddevelopmentdlifedcycled(SDL/SDLC)dwoulddbeduseddtoddeterminedthedmi
nimumdsetdofdprivilegesdrequireddtodperformdthedtargeteddtaskdanddrestrictdtheduserdtodaddomaindwithdt
hosedprivileges?
AdDesignd
BdDeploy
CdDevelopment
DdImplementationd-dANSWER-A
Whichdleastdprivilegedmethoddisdmoredgranulardindscopedanddgrantsdspecificdprocessesdonlydthedprivile
gesdnecessarydtodperformdcertaindrequireddfunctions,dinsteaddofdgrantingdthemdunrestricteddaccessdtodt
hedsystem?
AdEntitlementdprivilege
BdSeparationdofdprivilege
CdAggregationdofdprivileges
DdSegregationdofdresponsibilitiesd-dANSWER-B
Whyddoesdprivilegedcreepdposedadpotentialdsecuritydrisk?
, WGU MASTER'S COURSE C706 - SECURE SOFTWARE
d d d d d d
DESIGN EXAM LATEST 2024 ACTUAL EXAM 400 QUESTIONSA
d d d d d d d d
ND CORRECT DETAILED ANSWERS WITH RATIONALES (VERI
d d d d d d
FIED ANSWERS) |ALREADY GRADED A+
d d d d
AdUserdprivilegesddodnotdmatchdtheirdjobdrole.
BdWithdmoredprivileges,dtheredaredmoredresponsibilities.
CdAuditingdwilldshowdadmismatchdbetweendindividualdresponsibilitiesdanddtheirdaccessdrights.
DdUsersdhavedmoredprivilegesdthandtheydneeddanddmaydperformdactionsdoutsidedtheirdjobddescription.d
-dANSWER-D
Adsystemddeveloperdisdimplementingdadnewdsalesdsystem.dThedsystemddeveloperdisdconcerneddthatdunaut
horizeddindividualsdmaydbedabledtodviewdsensitivedcustomerdfinancialddata.
Whichdfamilydofdnonfunctionaldrequirementsdshoulddbedconsidereddasdpartdofdthedacceptancedcriteria?
AdIntegrity
BdAvailability
CdNonrepudition
DdConfidentialityd-dANSWER-D
Adprojectdmanagerdisdgivendthedtaskdtodcomedupdwithdnonfunctionaldacceptancedcriteriadrequirementsdf
ordbusinessdownersdasdpartdofdadprojectddelivery.
Whichdnonfunctionaldrequirementdshoulddbedapplieddtodthedacceptancedcriteria?
AdGivedsearchdoptionsdtodusers
BdEvaluatedtestdexecutiondresults
CdDividedusersdintodgroupsdanddgivedthemdseparatedrights
DdDevelopdsoftwaredthatdkeepsddownwarddcompatibilitydintactd-dANSWER-B
