WGU- C725 UPDATED ACTUAL Exam
Questions and CORRECT Answers
SOX (Sarbanes-Oxley Act) - CORRECT ANSWER Requires corporate executives to review
and modernize their company's financial reporting systems.
GLBA (Gramm-Leach-Bliley Act) - CORRECT ANSWER Known as the Financial
Modernization Act of 1999. It is a United States federal law that requires financial institutions to
explain how they share and protect their customers' private information. To be GLBA compliant,
financial institutions must communicate to their customers how they share the customers'
sensitive data, inform customers of their right to opt-out if they prefer that their personal data not
be shared with third parties.
What are the three methods of sanitization? - CORRECT ANSWER Overwriting
Deguassing
Destruction
Mandatory Access Control (MAC) - CORRECT ANSWER Uses security labels for access
control. Highly restrictive, usually used within government agencies. E.g. TS, SCI, etc.
Discretionary Access Control (DAC) - CORRECT ANSWER A means of restricting access to
objects based on the identity of subjects and/or groups to which they belong.
What are the problems with passwords? - CORRECT ANSWER Passwords can be insecure,
and easily broken. Dictionary words are not advised. Passwords are inconvenient, and
repudiable.
RADIUS - CORRECT ANSWER Remote Access Dial-In User Service; client/server protocol
and software that enables remote access users to communicate with a central server to
authenticate dial-in users and authorize their access to the requested system or service.
Questions and CORRECT Answers
SOX (Sarbanes-Oxley Act) - CORRECT ANSWER Requires corporate executives to review
and modernize their company's financial reporting systems.
GLBA (Gramm-Leach-Bliley Act) - CORRECT ANSWER Known as the Financial
Modernization Act of 1999. It is a United States federal law that requires financial institutions to
explain how they share and protect their customers' private information. To be GLBA compliant,
financial institutions must communicate to their customers how they share the customers'
sensitive data, inform customers of their right to opt-out if they prefer that their personal data not
be shared with third parties.
What are the three methods of sanitization? - CORRECT ANSWER Overwriting
Deguassing
Destruction
Mandatory Access Control (MAC) - CORRECT ANSWER Uses security labels for access
control. Highly restrictive, usually used within government agencies. E.g. TS, SCI, etc.
Discretionary Access Control (DAC) - CORRECT ANSWER A means of restricting access to
objects based on the identity of subjects and/or groups to which they belong.
What are the problems with passwords? - CORRECT ANSWER Passwords can be insecure,
and easily broken. Dictionary words are not advised. Passwords are inconvenient, and
repudiable.
RADIUS - CORRECT ANSWER Remote Access Dial-In User Service; client/server protocol
and software that enables remote access users to communicate with a central server to
authenticate dial-in users and authorize their access to the requested system or service.
