2025 WGU D487 SECURE SW DESIGN OA EXAM 3 (FULL REVISED EXAM) COMPLETE ACTUAL QUESTIONS AND CORRECT DETAILED ANSWERS (CORRECT VERIFIED SOLUTIONS) A NEW UPDATED VERSION

WGUhD487hSECUREhSOFTWAREhDESIGN




WGU D487 SECURE SOFTWARE DESIGN Eh h h h h




XAM 1 2025 SPRING- h h h




SUMMER VERIFIED QUESTIONS AND ANS h h h h




WERS WITH RATIONALE h h




What are the two common best principles of software applications in the developmen
h h h h h h h h h h h h


t process? Choose 2 answers.
h h h h




Quality code Se h h




cure code h




Information security h




h Integrity Availabilith




y

Quality code Se h h




cure code h




"Quality code" is correct. Quality code is efficient code that is easy to maintain and re
h h h h h h h h h h h h h h h


usable.

"Secure code" is correct. Secure code authorizes and authenticates every user transact
h h h h h h h h h h h


ion, logs the transaction, and denies all unauthorized requisitions.
h h h h h h h h

,WGUhD487hSECUREhSOFTWAREhDESIGN


What ensures that the user has the appropriate role and privilege to view data? Authen
h h h h h h h h h h h h h h




tication

Multi-

factor authentication Encry
h h




ption

Information security Autho h h




rization Authorization
h




Authorization ensures a user's information and credentials are approved by the syste
h h h h h h h h h h h


m.




Which security goal is defined by "guarding against improper information
h h h h h h h h h h


modification or destruction and ensuring information non-
h h h h h h


repudiation and authenticity"?h h




Integrity Qualit h




y Availability R
h h




eliability Integr h




ity



The data must remain unchanged by unauthorized users and remain reliable from the
h h h h h h h h h h h h h


data entry point to the database and back.
h h h h h h h

,WGUhD487hSECUREhSOFTWAREhDESIGN




Which phase in an SDLC helps to define the problem and scope of any existing syste
h h h h h h h h h h h h h h h


ms and determine the objectives of new systems?
h h h h h h h




Requirements h




Design Plannin h




g Testing Plann
h h




ing



The planning stage sets the project schedule and looks at the big picture.
h h h h h h h h h h h h




What happens during a dynamic code review?
h h h h h h




Programmers monitor system memory, functional behavior, response times, and over
h h h h h h h h h


all performance.
h




Customers perform tests to check software meets requirements.
h h h h h h h




An analysis of computer programs without executing them is performed. In
h h h h h h h h h h




put fields are supplied with unexpected input and tested.
h h h h h h h h




Programmers monitor system memory, functional behavior, response times, and over
h h h h h h h h h


all performance.
h




How should you store your application user credentials in your application database?
h h h h h h h h h h h

, WGUhD487hSECUREhSOFTWAREhDESIGN


Use application logic to encrypt credentials Store
h h h h h h




h credentials as clear text h h h




Store credentials using Base 64 encoded St
h h h h h h




ore credentials using salted hashes Store c
h h h h h h




redentials using salted hashes h h h




Hashing is a one- h h h


way process that converts a password to ciphertext using hash algorithms. Passw
h h h h h h h h h h h


ord salting adds random characters before or after a password prior to hashing to o
h h h h h h h h h h h h h h


bfuscate the actual password.
h h h




Which software methodology resembles an assembly-
h h h h h




line approach? V-model
h h




Agile model Iter h h




ative model Wath h




erfall model Wah h




terfall model h




Waterfall model is a continuous software development model in which the developm
h h h h h h h h h h h


ent steps flow steadily downwards.
h h h h




Which software methodology approach provides faster time to market and higher bus
h h h h h h h h h h h


iness value? h