100% satisfaction guarantee Immediately available after payment Both online and in PDF No strings attached
logo-home
Previously searched by you
Previously searched by you
logo
WGU D385 Software Security and Testing Exam 2024 New Latest Updated Version $17.99   Add to cart
Quickly navigate to
Preview
  2.  
  3. WGU D385 Software Security And Testing
  4.  
  5. WGU D385 Software Security and Testing

Exam (elaborations)

WGU D385 Software Security and Testing Exam 2024 New Latest Updated Version

 3 views  0 purchase
  • Course
  • WGU D385 Software Security and Testing
  • Institution
  • WGU D385 Software Security And Testing

WGU D385 Software Security and Testing Exam 2024 New Latest Updated Version How does a server authenticate itself? - ANS-By sending a publickey certificate to the client, which is issued by a certificate authority. The certificate contains the servers public key. What does the Strict-Tra...

[Show more]

Preview 2 out of 14  pages

Document information

  • September 12, 2024
  • 14
  • 2024/2025
  • Exam (elaborations)
  • Questions & answers

Subjects

  • wgu d385 software security and testing exam 2024
  • wgu d385 software security and testing exam
  • wgu d385 security and testing exam 2024

Written for

  • WGU D385 Software Security and Testing
  • WGU D385 Software Security and Testing

Seller

avatar-seller
laurenjames

Reviews received

Content preview

WGU D385 Software Security and
Testing Exam 2024 New Latest
Updated Version
How does a server authenticate itself? - ANS-By sending a public-
key certificate to the client, which is issued by a certificate
authority. The certificate contains the servers public key.


What does the Strict-Transport-Security response header do? -
ANS-Tells a browser that it should be accessed only via HTTPS.

What package is used to send and receive data between other
systems? - ANS-The requests package

What are HTTP sessions used for? - ANS-To isolate the traffic,
context, and and state of each user.

How should session ID's be transmitted and why? - ANS-They
should be sent and received confidentially over HTTPS (not HTTP)
because stealing session IDs is a big area of exploitation. A hijacked
session ID looks the same as a legitimate request.

What is session sniffing? - ANS-Eavesdroppers steal session IDs
over HTTP on websites that use HTTP on unverified users, then when
the user is verified they can use the same session ID to hijack the
account over HTTPS.

What is a cookie? - ANS-A small piece of data used to communicate
between the server, website, browser. Communicates the session
ID.

, What does the secure directive do? - ANS-Helps prevent MITM
attacks by ensuring a cookie will be transmitted over HTTPS not
HTTP, preventing attackers from intercepting the session ID.

What does the domain directive do? - ANS-Controls which hosts the
browser should send the session ID to.

What does the max-age directive do? - ANS-Declares an expiration
time for a cookie.

What hash function should you use for most general purpose
cryptographic hashing? - ANS-SHA-256

What hash function should you consider using for high security
environments, though it may have less support? - ANS-SHA3-256

What hash function should you use for very large messages? - ANS-
BLAKE2

What two hash functions should you avoid, as they're now
considered unsecure? - ANS-MD5 and SHA1

What is the difference between hash functions and checksum
functions? - ANS-Hash functions have stronger collision resistance,
checksums are faster. Checksums are not useful for security.

What module do you use for cryptographic hashing in Python? -
ANS-hashlib

What 3 properties characterize hash functions? - ANS-1.
Deterministic behavior 2. Fixed-length hash values 3. Avalanche
effect

The benefits of buying summaries with Stuvia:

Guaranteed quality through customer reviews

Guaranteed quality through customer reviews

Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.

Quick and easy check-out

Quick and easy check-out

You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.

Focus on what matters

Focus on what matters

Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!

Frequently asked questions

What do I get when I buy this document?

You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.

Satisfaction guarantee: how does it work?

Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.

Who am I buying these notes from?

Stuvia is a marketplace, so you are not buying this document from us, but from seller laurenjames. Stuvia facilitates payment to the seller.

Will I be stuck with a subscription?

No, you only buy these notes for $17.99. You're not tied to anything after your purchase.

Can Stuvia be trusted?

4.6 stars on Google & Trustpilot (+1000 reviews)

72964 documents were sold in the last 30 days

Founded in 2010, the go-to place to buy study notes for 14 years now

Start selling
$17.99
  • (0)
  Add to cart