100% satisfaction guarantee Immediately available after payment Both online and in PDF No strings attached
logo-home
WGU MASTER'S COURSE C706 - SECURE SOFTWARE DESIGN EXAM LATEST 2024 ACTUAL EXAM 400 QUESTIONS AND CORRECT DETAILED ANSWERS WITH RATIONALES (VERIFIED ANSWERS) | GRADED A+ $14.99
Add to cart

Exam (elaborations)

WGU MASTER'S COURSE C706 - SECURE SOFTWARE DESIGN EXAM LATEST 2024 ACTUAL EXAM 400 QUESTIONS AND CORRECT DETAILED ANSWERS WITH RATIONALES (VERIFIED ANSWERS) | GRADED A+

 6 views  0 purchase

What is a step for constructing a threat model for a project when using practical risk analysis? A Align your business goals B Apply engineering methods C Estimate probability of project time D Make a list of what you are trying to protect - ANSWER-D Which cyber threats are typically surgical ...

[Show more]

Preview 4 out of 138  pages

  • November 14, 2024
  • 138
  • 2024/2025
  • Exam (elaborations)
  • Questions & answers
All documents for this subject (1)
avatar-seller
Exammate
WGU MASTER'S
DESIGN COURSE
EXAM LATEST C706
2024 - SECURE
ACTUAL EXAMSOFTWARE
400 QUESTIONS




WGU MASTER'S COURSE C706 - SECURE SOFTWARE
DESIGN EXAM LATEST 2024 ACTUAL EXAM 400 QUESTIONS
AND CORRECT DETAILED ANSWERS WITH RATIONALES
(VERIFIED ANSWERS) | GRADED A+
What is a step for constructing a threat model for a project when using practical risk analysis?



A Align your business goals

B Apply engineering methods

C Estimate probability of project time

D Make a list of what you are trying to protect - ANSWER-D



Which cyber threats are typically surgical by nature, have highly specific targeting, and are
technologically sophisticated?



A Tactical attacks

B Criminal attacks

C Strategic attacks

D User-specific attacks - ANSWER-A



Which type of cyberattacks are often intended to elevate awareness of a topic?



A Cyberwarfare

B Tactical attacks

C User-specific attacks

D Sociopolitical attacks - ANSWER-D



What type of attack locks a user's desktop and then requires a payment to unlock it?

,WGU MASTER'S
DESIGN COURSE
EXAM LATEST C706
2024 - SECURE
ACTUAL EXAMSOFTWARE
400 QUESTIONS




A Phishing

,WGU MASTER'S
DESIGN COURSE
EXAM LATEST C706
2024 - SECURE
ACTUAL EXAMSOFTWARE
400 QUESTIONS




B Keylogger

C Ransomware

D Denial-of-service - ANSWER-C



What is a countermeasure against various forms of XML and XML path injection attacks?



A XML name wrapping

B XML unicode encoding

C XML attribute escaping

D XML distinguished name escaping - ANSWER-C



Which countermeasure is used to mitigate SQL injection attacks?



A SQL Firewall

B Projected bijection

C Query parameterization

D Progressive ColdFusion - ANSWER-C



What is an appropriate countermeasure to an escalation of privilege attack?



A Enforcing strong password policies

B Using standard encryption algorithms and correct key sizes

C Enabling the auditing and logging of all administration activities

D Restricting access to specific operations through role-based access controls - ANSWER-D

, WGU MASTER'S
DESIGN COURSE
EXAM LATEST C706
2024 - SECURE
ACTUAL EXAMSOFTWARE
400 QUESTIONS




Which configuration management security countermeasure implements least privilege access control?



A Following strong password policies to restrict access

B Restricting file access to users based on authorization

C Avoiding clear text format for credentials and sensitive data

D Using AES 256 encryption for communications of a sensitive nature - ANSWER-B



Which phase of the software development life cycle (SDL/SDLC) would be used to determine the
minimum set of privileges required to perform the targeted task and restrict the user to a domain
with those privileges?



A Design

B Deploy

C Development

D Implementation - ANSWER-A



Which least privilege method is more granular in scope and grants specific processes only the
privileges necessary to perform certain required functions, instead of granting them unrestricted
access to the system?



A Entitlement privilege

B Separation of privilege

C Aggregation of privileges

D Segregation of responsibilities - ANSWER-B



Why does privilege creep pose a potential security risk?

The benefits of buying summaries with Stuvia:

Guaranteed quality through customer reviews

Guaranteed quality through customer reviews

Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.

Quick and easy check-out

Quick and easy check-out

You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.

Focus on what matters

Focus on what matters

Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!

Frequently asked questions

What do I get when I buy this document?

You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.

Satisfaction guarantee: how does it work?

Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.

Who am I buying these notes from?

Stuvia is a marketplace, so you are not buying this document from us, but from seller Exammate. Stuvia facilitates payment to the seller.

Will I be stuck with a subscription?

No, you only buy these notes for $14.99. You're not tied to anything after your purchase.

Can Stuvia be trusted?

4.6 stars on Google & Trustpilot (+1000 reviews)

56326 documents were sold in the last 30 days

Founded in 2010, the go-to place to buy study notes for 14 years now

Start selling
$14.99
  • (0)
Add to cart
Added