WGU D488 Cybersecurity Architecture & Engineering —
Objective Assessment (Oa) Comprehensive Test Bank
(2026 Edition) 500 Questions And Correct Detailed
Answers (Verified Answers) All Topics Included |Already
Graded A+
Module 1 – Cybersecurity Principles & Security Models (Questions 1–
60)
1. Which of the following is the core principle of the CIA triad?
A. Confidentiality, Integrity, Availability
B. Control, Investigation, Authentication
C. Cryptography, Integrity, Access
D. Compliance, Identity, Audit
The CIA triad represents the foundational principles of information
security.
2. The principle of least privilege ensures that:
A. Users have full access to all systems
B. Users are granted only permissions necessary for their role
C. Users can access systems temporarily without restriction
D. Users share credentials for efficiency
Limiting access reduces potential damage from compromised
accounts.
3. Which security model focuses primarily on data confidentiality
using security labels?
A. Bell-LaPadula
B. Biba
, C. Clark-Wilson
D. Role-Based Access Control
Bell-LaPadula prevents unauthorized disclosure by enforcing “no
read up, no write down” rules.
4. Which model focuses on protecting data integrity rather than
confidentiality?
A. Bell-LaPadula
B. Biba
C. Clark-Wilson
D. Discretionary Access Control
Biba enforces rules to prevent unauthorized data modification.
5. Which model is designed to ensure well-formed transactions and
prevent fraud?
A. Bell-LaPadula
B. Clark-Wilson
C. Biba
D. Mandatory Access Control
Clark-Wilson emphasizes data integrity through separation of
duties and enforcement of certified transactions.
6. Role-Based Access Control (RBAC) assigns permissions based on:
A. Individual user requests
B. Job role or function
C. Random allocation
D. Security labels
RBAC simplifies administration by grouping permissions according
to roles.
,7. Attribute-Based Access Control (ABAC) makes access decisions
based on:
A. User roles only
B. Resource type only
C. Attributes of user, resource, and environment
D. Predefined security labels
ABAC is more flexible than RBAC, allowing dynamic policy
enforcement.
8. Which of the following best describes defense in depth?
A. Using a single strong security control
B. Layering multiple security controls
C. Reducing security measures to save costs
D. Focusing only on perimeter defenses
Multiple layers provide redundancy, reducing risk if one control
fails.
9. Which principle ensures that users cannot deny performing an
action?
A. Confidentiality
B. Integrity
C. Non-repudiation
D. Availability
Digital signatures and audit logs support non-repudiation.
10. Ensuring data is accurate, complete, and unaltered describes
which security principle?
A. Confidentiality
B. Integrity
C. Availability
, D. Non-repudiation
Integrity prevents unauthorized modification or corruption of data.
11. Limiting access to sensitive information only to authorized
users ensures:
A. Confidentiality
B. Integrity
C. Availability
D. Non-repudiation
Confidentiality protects sensitive information from unauthorized
disclosure.
12. Which of the following is an example of a preventive
control?
A. Firewall
B. Intrusion detection system
C. Security audit
D. Incident response plan
Preventive controls stop incidents before they occur.
13. Which of the following is a detective control?
A. Antivirus software
B. Security monitoring or IDS
C. Firewall
D. Access control policy
Detective controls identify and alert on incidents after they occur.
14. Which of the following is a corrective control?
A. Backup and restore
B. Encryption
Objective Assessment (Oa) Comprehensive Test Bank
(2026 Edition) 500 Questions And Correct Detailed
Answers (Verified Answers) All Topics Included |Already
Graded A+
Module 1 – Cybersecurity Principles & Security Models (Questions 1–
60)
1. Which of the following is the core principle of the CIA triad?
A. Confidentiality, Integrity, Availability
B. Control, Investigation, Authentication
C. Cryptography, Integrity, Access
D. Compliance, Identity, Audit
The CIA triad represents the foundational principles of information
security.
2. The principle of least privilege ensures that:
A. Users have full access to all systems
B. Users are granted only permissions necessary for their role
C. Users can access systems temporarily without restriction
D. Users share credentials for efficiency
Limiting access reduces potential damage from compromised
accounts.
3. Which security model focuses primarily on data confidentiality
using security labels?
A. Bell-LaPadula
B. Biba
, C. Clark-Wilson
D. Role-Based Access Control
Bell-LaPadula prevents unauthorized disclosure by enforcing “no
read up, no write down” rules.
4. Which model focuses on protecting data integrity rather than
confidentiality?
A. Bell-LaPadula
B. Biba
C. Clark-Wilson
D. Discretionary Access Control
Biba enforces rules to prevent unauthorized data modification.
5. Which model is designed to ensure well-formed transactions and
prevent fraud?
A. Bell-LaPadula
B. Clark-Wilson
C. Biba
D. Mandatory Access Control
Clark-Wilson emphasizes data integrity through separation of
duties and enforcement of certified transactions.
6. Role-Based Access Control (RBAC) assigns permissions based on:
A. Individual user requests
B. Job role or function
C. Random allocation
D. Security labels
RBAC simplifies administration by grouping permissions according
to roles.
,7. Attribute-Based Access Control (ABAC) makes access decisions
based on:
A. User roles only
B. Resource type only
C. Attributes of user, resource, and environment
D. Predefined security labels
ABAC is more flexible than RBAC, allowing dynamic policy
enforcement.
8. Which of the following best describes defense in depth?
A. Using a single strong security control
B. Layering multiple security controls
C. Reducing security measures to save costs
D. Focusing only on perimeter defenses
Multiple layers provide redundancy, reducing risk if one control
fails.
9. Which principle ensures that users cannot deny performing an
action?
A. Confidentiality
B. Integrity
C. Non-repudiation
D. Availability
Digital signatures and audit logs support non-repudiation.
10. Ensuring data is accurate, complete, and unaltered describes
which security principle?
A. Confidentiality
B. Integrity
C. Availability
, D. Non-repudiation
Integrity prevents unauthorized modification or corruption of data.
11. Limiting access to sensitive information only to authorized
users ensures:
A. Confidentiality
B. Integrity
C. Availability
D. Non-repudiation
Confidentiality protects sensitive information from unauthorized
disclosure.
12. Which of the following is an example of a preventive
control?
A. Firewall
B. Intrusion detection system
C. Security audit
D. Incident response plan
Preventive controls stop incidents before they occur.
13. Which of the following is a detective control?
A. Antivirus software
B. Security monitoring or IDS
C. Firewall
D. Access control policy
Detective controls identify and alert on incidents after they occur.
14. Which of the following is a corrective control?
A. Backup and restore
B. Encryption
