Written by students who passed Immediately available after payment Read online or as PDF Wrong document? Swap it for free 4.6 TrustPilot
logo-home
Exam (elaborations)

WGU D487: Secure Software Design Questions and Answers (2026/2027) | 100% Verified Solutions | A+ Study Pack

Rating
-
Sold
-
Pages
16
Grade
A+
Uploaded on
22-06-2026
Written in
2025/2026

WGU D487: Secure Software Design Questions and Answers (2026/2027) | 100% Verified Solutions | A+ Study Pack

Institution
WGU D487: Secure Software Design
Course
WGU D487: Secure Software Design

Content preview

WGU D487: Secure Software Design Questions
and Answers (2026/2027) | 100% Verified
Solutions | A+ Study Pack
• Secure software -✓✓Software that protects confidentiality, integrity, and availability
while meeting its intended function.

• Software security -✓✓The discipline of preventing, finding, and fixing security
weaknesses in software throughout its life cycle.

• Security assurance -✓✓Confidence that software security controls and processes are
effective and appropriate for the product's risk.

• CIA triad -✓✓Confidentiality, integrity, and availability; the three core security goals.

• Confidentiality -✓✓Protecting information from unauthorized disclosure.

• Integrity -✓✓Protecting data or systems from unauthorized or improper modification.

• Availability -✓✓Ensuring systems and data are accessible when needed.

• Attack surface -✓✓The set of exposed entry points, interfaces, data flows, privileges,
and code paths an attacker could target.

• Attack surface validation -✓✓Testing and reviewing exposed attack paths to confirm
they are minimized and protected.

• Threat modeling -✓✓A structured process for identifying assets, attackers, entry
points, threats, vulnerabilities, and mitigations.

• Threat -✓✓A potential event or actor that could cause harm to a system or asset.

• Vulnerability -✓✓A weakness in software, design, configuration, or process that can
be exploited.

• Exploit -✓✓A technique, code, or method used to take advantage of a vulnerability.

• Attack -✓✓An action taken against a target system; often carried out using an exploit.

• Mitigation -✓✓A control or design change that reduces the likelihood or impact of a
threat.

,• Risk -✓✓The combination of likelihood and impact of a threat exploiting a
vulnerability.

• Likelihood -✓✓The probability that a threat will occur or a vulnerability will be
exploited.

• Impact -✓✓The amount of harm caused if a risk is realized.

• Risk ranking -✓✓Prioritizing threats or vulnerabilities based on severity, likelihood,
impact, or scoring models.

• Risk acceptance -✓✓A formal decision to release or continue operating with a known
risk.

• Security requirement -✓✓A required security behavior, control, or constraint the
software must satisfy.

• Privacy requirement -✓✓A requirement related to proper collection, use, storage,
disclosure, retention, or deletion of personal data.

• Nonfunctional requirement -✓✓A requirement describing system qualities such as
security, performance, reliability, privacy, or compliance.

• Least privilege -✓✓Granting users, processes, and systems only the minimum access
necessary to perform their function.

• Defense in depth -✓✓Using multiple layers of controls so failure of one control does
not fully compromise the system.

• Secure by design -✓✓Designing architecture and features with security controls and
threat resistance from the start.

• Shift left -✓✓Moving security activities earlier in the development life cycle to find and
fix issues sooner.

• Security champion -✓✓A development-team member who promotes secure practices
and helps scale security knowledge inside the team.

• Software Security Group (SSG) -✓✓A centralized group that defines software security
policy, guidance, reviews, metrics, and response processes.

• Software Security Initiative (SSI) -✓✓An organization-wide program for improving
software security practices and maturity.

, • Software Security Architect -✓✓A role responsible for security architecture guidance,
threat modeling, and design risk analysis.

• Chief Information Security Officer (CISO) -✓✓Executive responsible for information
security strategy and governance.

• Chief Security Officer (CSO) -✓✓Executive responsible for broader organizational
security responsibilities.

• Chief Privacy Officer (CPO) -✓✓Executive responsible for privacy strategy, policy,
and compliance.

• A1 Security Assessment -✓✓The SDL phase that scopes the project's security and
privacy needs early in the SDLC.

• A1 main purpose -✓✓Identify risk, threat profile, compliance needs, privacy concerns,
stakeholders, and required SDL work before design hardens.

• Discovery meeting -✓✓An early meeting to gather product purpose, architecture
assumptions, data types, users, deployment context, technology stack, and risks.

• SDL project plan -✓✓A plan defining required SDL activities, responsibilities,
schedule, deliverables, and tracking mechanisms.

• Risk profile -✓✓A description of the product's security risk level and risk drivers.

• Threat profile -✓✓A description of likely attackers, attack methods, assets, and threat
categories for a product.

• Compliance mapping -✓✓Identifying regulatory, certification, contractual, or policy
obligations that apply to the product.

• Privacy Impact Assessment (PIA) -✓✓An assessment that identifies privacy risks and
obligations related to personal or sensitive data.

• PII -✓✓Personally identifiable information; data that can identify or be linked to a
person.

• A2 Architecture -✓✓The SDL phase focused on analyzing architecture from a security
perspective before detailed implementation.

• A2 main purpose -✓✓Make the architecture secure by design through threat
modeling, DFDs, risk mitigation, policy analysis, and attack-surface reduction.

Written for

Institution
WGU D487: Secure Software Design
Course
WGU D487: Secure Software Design

Document information

Uploaded on
June 22, 2026
Number of pages
16
Written in
2025/2026
Type
Exam (elaborations)
Contains
Questions & answers

Subjects

$13.49
Get access to the full document:

Wrong document? Swap it for free Within 14 days of purchase and before downloading, you can choose a different document. You can simply spend the amount again.
Written by students who passed
Immediately available after payment
Read online or as PDF


Also available in package deal

Thumbnail
Package deal
WGU D487: Secure Software Design Final Exam Prep Bundle | 2026 Practice Questions & Answers Set | A+ Verified Material | 100% Complete Review Pack
-
6 2026
$ 31.77 More info

Get to know the seller

Seller avatar
Reputation scores are based on the amount of documents a seller has sold for a fee and the reviews they have received for those documents. There are three levels: Bronze, Silver and Gold. The better the reputation, the more your can rely on the quality of the sellers work.
PACKPASS Harvard University
View profile
Follow You need to be logged in order to follow users or courses
Sold
40
Member since
5 months
Number of followers
0
Documents
6030
Last sold
6 days ago
Pass Package Academy

As a tutor, I provide accurate, reliable, and up-to-date study materials to support students in their exam preparation and assignments. My focus is on high-quality resources such as summaries, nursing exam guides, and test banks designed to help you study with confidence and achieve better results. After your purchase, your feedback is highly important, please take a moment to leave a review. Reviews help maintain quality, guide other students, and improve future study materials. Your support and honest reviews are greatly appreciated and make a real difference. Thank you for trusting my services. Wishing you success and good luck in your studies.

Read more Read less
4.0

3 reviews

5
2
4
0
3
0
2
1
1
0

Why students choose Stuvia

Created by fellow students, verified by reviews

Quality you can trust: written by students who passed their tests and reviewed by others who've used these notes.

Didn't get what you expected? Choose another document

No worries! You can instantly pick a different document that better fits what you're looking for.

Pay as you like, start learning right away

No subscription, no commitments. Pay the way you're used to via credit card and download your PDF document instantly.

Student with book image

“Bought, downloaded, and aced it. It really can be that simple.”

Alisha Student

Working on your references?

Create accurate citations in APA, MLA and Harvard with our free citation generator.

Working on your references?

Frequently asked questions