It c706 Study guides, Class notes & Summaries

WGU C706 Secure Software Design Study Guide (New 2023/ 2024 Update) | Questions and Verified Answers| 100% Correct QUESTION Auditor Answer: Responsible for reviewing and verifying that the security policy is prop- erly implemented and the derived security solutions are adequate. QUESTION Security Control Framework Answer: Structure of the security solution desired by the organization. QUESTION Control Objectives for Information and Related Technology (COB...

WGU C706 Secure Software Design Study Guide Questions and Answers (2022/2023) (Verified Answers) Confidentiality Information is not made available or disclosed to unauthorized individuals, entities, or processes. Ensures unauthorized persons are not able to read private and sensitive data. It is achieved through cryptography. Integrity Ensures unauthorized persons or channels are not able to modify the data. It is accomplished through the use of a message digest or digital signatures. Ava...

WGU C706 Pre- Assessment V2 (New 2023/ 2024 Update) Secure Software Design| Questions and Verified Answers| 100% Correct| Graded A QUESTION What consists of multiple security assessments from independent parties? Answer: Third-Party Security Reviews QUESTION What requires a communication cadence with customers that should be formalized and published so that everyone in the company is aware of it and can invoke it if needed? Answer: External Vulnerability Disclo...

WGU C706 Exam Questions With All Correct Answers Open Design Security Principle - CORRECT ANSWER security of a mechanism should not depend on the secrecy of its design or implementation Strategic attacks - CORRECT ANSWER user general targeting against a broad industry. highly repeatable and Tactical attacks - CORRECT ANSWER surgical by nature, have highly specific targeting, and are technologically sophisticated User specific attacks - CORRECT ANSWER can be strateg...

WGU C706 Objective Assessment Exam Prep (Latest 2023/ 2024 Update) Secure Software Design| Questions and Verified Answers with Rationales| 100% Correct| Grade A QUESTION Which Linux command lists the open files for the user currently logged into a system? a. lsof b. openfile c. ofopen d. lsopen Answer: a. lsof To list the open files for the user currently logged into the system an investigator can run the lsof command in the following manner: Syntax: lsof -u <user_name&g...

WGU C706 Secure Software Design Exam (New 2023/ 2024 Update) | Questions and Verified Answers| 100% Correct| Graded A Q: You have been tasked with the development of a new application for your organization. You are engaged in the project initiation phase. Which activity should you implement during this phase? A certification and accreditation B defining formal functional baseline C functionality and performance tests D identification of threats and vulnerabilities Answer: ...

WGU C706 Pre- Assessment Version 2 (Latest 2023/ 2024 Update) Secure Software Design| Questions and Verified Answers| 100% Correct| Grade A Q: Bringing the security team into the development process early is the most ___________ way to enable risk identification, planning, and mitigation Answer: cost-effective Q: The purpose of a __________ is to define what needs to be protected and how it will be protected, including reviewing and incorporating policies from outside the SDL tha...

WGU C706 Pre- Assessment (Latest 2023/ 2024 Update) Secure Software Design| Questions and Verified Answers| 100% Correct| Grade A Q: A company is creating a new software to track customer balance and wants to design a secure application. Which best practice should be applied? -Create multiple layers of protection so that a subsequent layer provides protection if a layer is breached -Ensure there is physical acceptability to ensure software is intuitive for the users to do their job...

WGU C706 Secure Software Design Exam (Latest 2023/ 2024 Update) | Questions and Verified Answers| 100% Correct| Grade A Q: A hacker has used a design flaw in an application to obtain unauthorized access to the application. Which type of attack has occurred? A buffer overflow B backdoor C escalation of privileges D maintenance hook Answer: C Q: During the recent development of a new application, the customer requested a change. You must implement this change according t...

WGU C706 Pre- Assessment (New 2023/ 2024 Update) Secure Software Design| Questions and Verified Answers| 100% Correct| Graded A QUESTION What is the third step for constructing a threat model for identifying a spoofing threat? -Decompose threats -Identify threats -Identify vulnerabilities -Survey the application Answer: Decompose threats QUESTION What is a step for constructing a threat model for a project when using practical risk analysis? -Align your busin...