Examen

WGU D487 PRE-ASSESSMENT: SECURE SOFTWARE DESIGN (KEO1) (PKEO) Questions and answers

Puntuación

Vendido

Páginas

Grado

A+

Subido en

13-02-2025

Escrito en

2024/2025

WGU D487 PRE-ASSESSMENT: SECURE SOFTWARE DESIGN (KEO1) (PKEO) Questions and answersWGU D487 PRE-ASSESSMENT: SECURE SOFTWARE DESIGN (KEO1) (PKEO) Questions and answersWGU D487 PRE-ASSESSMENT: SECURE SOFTWARE DESIGN (KEO1) (PKEO) Questions and answers

Mostrar más Leer menos

Institución

WGU D487 PRE-ASSESSMENT: SECURE SOFTWARE DESIGN (K

Grado

WGU D487 PRE-ASSESSMENT: SECURE SOFTWARE DESIGN (K

Ups! No podemos cargar tu documento ahora. Inténtalo de nuevo o contacta con soporte.

Informar violación de derechos de autor

Escuela, estudio y materia

Institución: WGU D487 PRE-ASSESSMENT: SECURE SOFTWARE DESIGN (K
Grado: WGU D487 PRE-ASSESSMENT: SECURE SOFTWARE DESIGN (K

Información del documento

Subido en: 13 de febrero de 2025
Número de páginas: 5
Escrito en: 2024/2025
Tipo: Examen
Contiene: Preguntas y respuestas

Temas

wgu d487 pre assessment secure software design k

Vista previa del contenido

WGU D487 PRE-ASSESSMENT: SECURE SOFTWARE
DESIGN (KEO1) (PKEO) QUESTIONS AND ANSWERS
What is a study of real-world software security initiatives organized so companies can measure their initiatives and
y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y,

understand how to evolve them over time?, - Correct Answer ✔✔ - Building Security In Maturity Model (BSIMM)
y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y,

What is the analysis of computer software that is performed without executing programs? - Correct Answer ✔✔ -
y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y,

Static analysis
y, y,

Which International Organization for Standardization (ISO) standard is the benchmark for information security today
y, y, y, y, y, y, y, y, y, y, y, y, y,

Correct Answer ✔✔ - ISO/IEC 27001.
y, y, y, y, y, y, y,

What is the analysis of computer software that is performed by executing programs on a real or virtual processor in re
y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y,

time?, - Correct Answer ✔✔ - Dynamic analysis
y, y, y, y, y, y, y, y, y,

Which person is responsible for designing, planning, and implementing secure coding practices and security testing
y, y, y, y, y, y, y, y, y, y, y, y, y, y,

methodologies? - Correct Answer ✔✔ - Software security architect
y, y, y, y, y, y, y, y, y, y,

A company is preparing to add a new feature to its flagship software product. The new feature is similar to features th
y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y,

have been added in previous years, and the requirements are well-documented. The project is expected to last three
y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y,

four months, at which time the new feature will be released to customers. Project team members will focus solely on t
y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y,

new feature until the project ends. Which software development methodology is being used? - Correct Answer ✔✔
y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y,

Waterfall
y,

A new product will require an administration section for a small number of users. Normal users will be able to view
y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y,

limited customer information and should not see admin functionality within the application. Which concept is being
y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y,

used? - Correct Answer ✔✔ - Principle of least privilege
y, y, y, y, y, y, y, y, y, y, y,

The scrum team is attending their morning meeting, which is scheduled at the beginning of the work day. Each team
y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y,

member reports what they accomplished yesterday, what they plan to accomplish today, and if they have any
y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y,

impediments that may cause them to miss their delivery deadline. Which scrum ceremony is the team participating in
y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y,

- Correct Answer ✔✔ - Daily Scrum
y, y, y, y, y, y, y, y,

What is a list of information security vulnerabilities that aims to provide names for publicly known problems? - Correct
y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y,

Answer ✔✔ - Common computer vulnerabilities and exposures (CVE)
y, y, y, y, y, y, y, y, y,

Which secure coding best practice uses well-tested, publicly available algorithms to hide product data from
y, y, y, y, y, y, y, y, y, y, y, y, y, y,

unauthorized access? - Correct Answer ✔✔ - Cryptographic practices
y, y, y, y, y, y, y, y, y, y,

Which secure coding best practice uses well-tested, publicly available algorithms to hide product data from
y, y, y, y, y, y, y, y, y, y, y, y, y, y,

unauthorized access? - Correct Answer ✔✔ - Cryptographic practices
y, y, y, y, y, y, y, y, y, y,

Which secure coding best practice ensures servers, frameworks, and system components are all running the latest
y, y, y, y, y, y, y, y, y, y, y, y, y, y, y,

approved versions? - Correct Answer ✔✔ - System configuration
y, y, y, y, y, y, y, y, y, y,

,Which secure coding best practice says to use parameterized queries, encrypted connection strings stored in separa
y, y, y, y, y, y, y, y, y, y, y, y, y, y, y,

configuration files, and strong passwords or multi-factor authentication? - Correct Answer ✔✔ - Database security
y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y,

Which secure coding best practice says that all information passed to other systems should be encrypted? - Correct
y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y,

Answer ✔✔ - Communication security
y, y, y, y, y,

eam members are being introduced during sprint zero in the project kickoff meeting. The person being introduced is a
y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y,

member of the scrum team, responsible for writing feature logic and attending sprint ceremonies. Which role is the
y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y,

team member playing? - Correct Answer ✔✔ - Software developer
y, y, y, y, y, y, y, y, y, y, y,

A software security team member has created data flow diagrams, chosen the STRIDE methodology to perform thre
y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y,

reviews, and created the security assessment for the new product. Which category of secure software best practices
y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y,

did the team member perform? - Correct Answer ✔✔ - Architecture analysis
y, y, y, y, y, y, y, y, y, y, y, y, y,

Team members are being introduced during sprint zero in the project kickoff meeting. The person being introduced w
y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y,

be a facilitator, will try to remove roadblocks and ensure the team is communicating freely, and will be responsible for
y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y,

facilitating all scrum ceremonies. Which role is the team member playing? - Correct Answer ✔✔ - Scrum master
y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y,

The new product standards state that all traffic must be secure and encrypted. What is the name for this secure codin
y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y,

practice? - Correct Answer ✔✔ - Communication security
y, y, y, y, y, y, y, y, y,

Which DREAD category is based on how easily a threat exploit can be repeated? - Correct Answer ✔✔ -
y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y,

Reproducibility
y,

Which mitigation technique can be used to fight against a data tampering threat? - Correct Answer ✔✔ - Digital
y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y,

signatures
y,

What is a countermeasure to the web application security frame (ASF) configuration management threat category? -
y, y, y, y, y, y, y, y, y, y, y, y, y, y, y,

Correct Answer ✔✔ - Compliance requirement
y, y, y, y, y, y, y,

Which type of requirement specifies that file formats the application sends to financial institutions must be certified
y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y,

every four years? - Correct Answer ✔✔ - Compliance requirement
y, y, y, y, y, y, y, y, y, y, y,

Which type of requirement specifies that credit card numbers displayed in the application will be masked so they only
y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y,

show the last four digits? - Correct Answer ✔✔ - Privacy requirement
y, y, y, y, y, y, y, y, y, y, y, y, y,

Which type of requirement specifies that user passwords will require a minimum of 8 characters and must include at
y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y,

least one uppercase character, one number, and one special character? - Correct Answer ✔✔ - Security requireme
y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y,

Which type of requirement specifies that credit card numbers are designated as highly sensitive confidential persona
y, y, y, y, y, y, y, y, y, y, y, y, y, y, y,

information? - Correct Answer ✔✔ - Data classification requirement
y, y, y, y, y, y, y, y, y, y,

Which privacy impact statement requirement type defines how personal information is protected on devices used by
y, y, y, y, y, y, y, y, y, y, y, y, y, y, y,

more than a single associate? - Correct Answer ✔✔ - Privacy control requirements
y, y, y, y, y, y, y, y, y, y, y, y, y, y,

In which step of the PASTA threat modeling methodology does design flaw analysis take place? - Correct Answer ✔
y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y, y,

- Vulnerability and weakness analysis
y, y, y, y, y,

$16.79

Accede al documento completo:

100% de satisfacción garantizada

Inmediatamente disponible después del pago

Tanto en línea como en PDF

No estas atado a nada

Conoce al vendedor

Lectpotter

4.9

(181)

Documento también disponible en un lote

Conoce al vendedor

Lectpotter Strayer University

Ver perfil

Seguir

Vendido

Miembro desde

1 año

Número de seguidores

Documentos

2407

Última venta

6 días hace

REALITIEXAMS

Nursing Being my main profession line, My mission is to be your LIGHT in the dark. If you're worried or having trouble in nursing school, I really want my notes to be your guide! I know they have helped countless others get through and that's all I want for YOU! On this page, you find all documents, package deals, and flashcards offered by seller Lectpotter I have essential guides that are Almost A+ graded, I am a very friendly person:

Lee mas Leer menos

4.9

181 reseñas

173

Recientemente visto por ti

Por qué los estudiantes eligen Stuvia

Creado por compañeros estudiantes, verificado por reseñas

Calidad en la que puedes confiar: escrito por estudiantes que aprobaron y evaluado por otros que han usado estos resúmenes.

¿No estás satisfecho? Elige otro documento

¡No te preocupes! Puedes elegir directamente otro documento que se ajuste mejor a lo que buscas.

Paga como quieras, empieza a estudiar al instante

Sin suscripción, sin compromisos. Paga como estés acostumbrado con tarjeta de crédito y descarga tu documento PDF inmediatamente.

“Comprado, descargado y aprobado. Así de fácil puede ser.”

Alisha Student

Preguntas frecuentes

What do I get when I buy this document?

You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.

100% de satisfacción garantizada: ¿Cómo funciona?

Nuestra garantía de satisfacción le asegura que siempre encontrará un documento de estudio a tu medida. Tu rellenas un formulario y nuestro equipo de atención al cliente se encarga del resto.

Who am I buying this summary from?

Stuvia is a marketplace, so you are not buying this document from us, but from seller Lectpotter. Stuvia facilitates payment to the seller.

Will I be stuck with a subscription?

No, you only buy this summary for $16.79. You're not tied to anything after your purchase.

Can Stuvia be trusted?

4.6 stars on Google & Trustpilot (+1000 reviews) 45,681 summaries were sold in the last 30 days Founded in 2010, the go-to place to buy summaries for 16 years now