WGU D487 SECURE SW DESIGN OA AND PRE ASSESSMENT
EXAM 2024-2025 ACTUAL COMPLETE ACCURATE REAL EXAM
QUESTIONS WITH DETAILED VERIFIED ANSWERS (100%
CORRECT ANSWERS) /ALREADY GRADED A+
Which type of software testing is being performed when an
analyst executes a series of test cases based on application
requirements? - ANSWER-Functional testing
A security tester changed the application URL from
www.app.com/account?id='3' to www.app.com/account?id='3 or
1=1', which returned a collection of account information.
Database logs showed that the query that was executed was
SELECT * FROM ACCOUNTS WHERE accountId=3 or 1=1.How
should existing security controls be adjusted to prevent this in
the future? - ANSWER-Ensure server-side queries are
parameterized
What is the analysis of computer software that is performed by
executing programs on a real or virtual processor in real time?, -
ANSWER-Dynamic analysis
Which person is responsible for designing, planning, and
implementing secure
,coding practices and security testing methodologies? -
ANSWER-Software
security
architect
A company is preparing to add a new feature to its flagship
software product. The new feature is similar to features that
have been added in previous years, and the requirements are
well-documented. The project is expected to last three to four
months, at which time the new feature will be released to
customers. Project team members will focus solely on the new
feature until the project ends. Which software development
methodology is being used? - ANSWER-Waterfall
A new product will require an administration section for a small
number of users.
Normal users will be able to view limited customer information
and should not
see admin functionality within the application. Which concept
is being used? -
ANSWER-Principle of least
privilege
The scrum team is attending their morning meeting, which is
scheduled at the beginning of the work day. Each team member
, reports what they accomplished yesterday, what they plan to
accomplish today, and if they have any impediments that may
cause them to miss their delivery deadline. Which scrum
ceremony is the team participating in? - ANSWER-Daily Scrum
What is a list of information security vulnerabilities that aims to
provide names for
publicly known problems? - ANSWER-Common computer
vulnerabilities and
exposures
(CVE)
Which secure coding best practice uses well-tested, publicly
available algorithms
to hide product data from unauthorized access? - ANSWER-
Cryptographic
practices
Which secure coding best practice uses well-tested, publicly
available algorithms
to hide product data from unauthorized access? - ANSWER-
Cryptographic
practices
EXAM 2024-2025 ACTUAL COMPLETE ACCURATE REAL EXAM
QUESTIONS WITH DETAILED VERIFIED ANSWERS (100%
CORRECT ANSWERS) /ALREADY GRADED A+
Which type of software testing is being performed when an
analyst executes a series of test cases based on application
requirements? - ANSWER-Functional testing
A security tester changed the application URL from
www.app.com/account?id='3' to www.app.com/account?id='3 or
1=1', which returned a collection of account information.
Database logs showed that the query that was executed was
SELECT * FROM ACCOUNTS WHERE accountId=3 or 1=1.How
should existing security controls be adjusted to prevent this in
the future? - ANSWER-Ensure server-side queries are
parameterized
What is the analysis of computer software that is performed by
executing programs on a real or virtual processor in real time?, -
ANSWER-Dynamic analysis
Which person is responsible for designing, planning, and
implementing secure
,coding practices and security testing methodologies? -
ANSWER-Software
security
architect
A company is preparing to add a new feature to its flagship
software product. The new feature is similar to features that
have been added in previous years, and the requirements are
well-documented. The project is expected to last three to four
months, at which time the new feature will be released to
customers. Project team members will focus solely on the new
feature until the project ends. Which software development
methodology is being used? - ANSWER-Waterfall
A new product will require an administration section for a small
number of users.
Normal users will be able to view limited customer information
and should not
see admin functionality within the application. Which concept
is being used? -
ANSWER-Principle of least
privilege
The scrum team is attending their morning meeting, which is
scheduled at the beginning of the work day. Each team member
, reports what they accomplished yesterday, what they plan to
accomplish today, and if they have any impediments that may
cause them to miss their delivery deadline. Which scrum
ceremony is the team participating in? - ANSWER-Daily Scrum
What is a list of information security vulnerabilities that aims to
provide names for
publicly known problems? - ANSWER-Common computer
vulnerabilities and
exposures
(CVE)
Which secure coding best practice uses well-tested, publicly
available algorithms
to hide product data from unauthorized access? - ANSWER-
Cryptographic
practices
Which secure coding best practice uses well-tested, publicly
available algorithms
to hide product data from unauthorized access? - ANSWER-
Cryptographic
practices
