WGU Master's Course C725 -
Information Security and Assurance
Exam 2026 Questions and Answers 100%
Pass Guaranteed
Which two passwords are the weakest?
A. Pa$$w0Rd%^78
B. Love@$MySon80
C. C@1Il@VEm1
D. Password1234 - Correct answer-BD
Which two secure methods should be used to keep track of passwords?
A. Encrypt text files of them on the user's workstation
B. Store them on a sticky note in a convenient spot
©COPYRIGHT 2025, ALL RIGHTS RESERVE 1
,C. Share them with a trusted manager or coworker
D. Organization-approved password storage software - Correct answer-AD
Which groups typically report to the chief security officer (CSO)?
A. Security engineering and operations
B. Physical and software security
C. Audit and incident response
D. Facilities and information technology functions - Correct answer-A
A company is considering which controls to buy to protect an asset.
What should the price of the controls be in relation to the cost of the asset?
A. Less than the annual loss expectancy
B. More than the annual loss expectancy
C. Equal to the cost of the asset
D. More than the cost of the asset - Correct answer-A
©COPYRIGHT 2025, ALL RIGHTS RESERVE 2
,How many keys are used in asymmetric encryption?
A. No keys are used to encrypt and decrypt a message.
B. One key is used to encrypt and decrypt a message.
C. Two keys are used to encrypt and decrypt a message.
D. Three keys are used to encrypt and decrypt a message. - Correct answer-C
Which protocol is a variant of a standard web transfer protocol that adds a layer of
security on the data in transit using a secure socket layer?
A. HTTPS
B. HTTP
C. FTP
D. SFTP - Correct answer-A
Which description characterizes symmetric cryptography?
A. The same key is used to lock and unlock the cipher.
©COPYRIGHT 2025, ALL RIGHTS RESERVE 3
, B. Two separate but unrelated keys are used to unlock the cipher.
C. Two separate and related keys are used to unlock the cipher.
D. Keys are unnecessary when using symmetric cryptography to unlock a cipher. -
Correct answer-A
An employee uses a secure hashing algorithm for message integrity. The employee
sends a plain text message with the embedded hash to a colleague. A rogue device
receives and retransmits the message to its destination. Once received and checked
by the intended recipient, the hashes do not match.
Which STRIDE concept has been violated?
A. Tampering
B. Repudiation
C. Elevation of privilege
D. Denial-of-service - Correct answer-A
An attacker accesses private emails between the company's CISO and board
members. The attacker then publishes the emails online.
©COPYRIGHT 2025, ALL RIGHTS RESERVE 4
Information Security and Assurance
Exam 2026 Questions and Answers 100%
Pass Guaranteed
Which two passwords are the weakest?
A. Pa$$w0Rd%^78
B. Love@$MySon80
C. C@1Il@VEm1
D. Password1234 - Correct answer-BD
Which two secure methods should be used to keep track of passwords?
A. Encrypt text files of them on the user's workstation
B. Store them on a sticky note in a convenient spot
©COPYRIGHT 2025, ALL RIGHTS RESERVE 1
,C. Share them with a trusted manager or coworker
D. Organization-approved password storage software - Correct answer-AD
Which groups typically report to the chief security officer (CSO)?
A. Security engineering and operations
B. Physical and software security
C. Audit and incident response
D. Facilities and information technology functions - Correct answer-A
A company is considering which controls to buy to protect an asset.
What should the price of the controls be in relation to the cost of the asset?
A. Less than the annual loss expectancy
B. More than the annual loss expectancy
C. Equal to the cost of the asset
D. More than the cost of the asset - Correct answer-A
©COPYRIGHT 2025, ALL RIGHTS RESERVE 2
,How many keys are used in asymmetric encryption?
A. No keys are used to encrypt and decrypt a message.
B. One key is used to encrypt and decrypt a message.
C. Two keys are used to encrypt and decrypt a message.
D. Three keys are used to encrypt and decrypt a message. - Correct answer-C
Which protocol is a variant of a standard web transfer protocol that adds a layer of
security on the data in transit using a secure socket layer?
A. HTTPS
B. HTTP
C. FTP
D. SFTP - Correct answer-A
Which description characterizes symmetric cryptography?
A. The same key is used to lock and unlock the cipher.
©COPYRIGHT 2025, ALL RIGHTS RESERVE 3
, B. Two separate but unrelated keys are used to unlock the cipher.
C. Two separate and related keys are used to unlock the cipher.
D. Keys are unnecessary when using symmetric cryptography to unlock a cipher. -
Correct answer-A
An employee uses a secure hashing algorithm for message integrity. The employee
sends a plain text message with the embedded hash to a colleague. A rogue device
receives and retransmits the message to its destination. Once received and checked
by the intended recipient, the hashes do not match.
Which STRIDE concept has been violated?
A. Tampering
B. Repudiation
C. Elevation of privilege
D. Denial-of-service - Correct answer-A
An attacker accesses private emails between the company's CISO and board
members. The attacker then publishes the emails online.
©COPYRIGHT 2025, ALL RIGHTS RESERVE 4
