WGU Secure Software Design.pdf
Q: 1
What are the eight phases of the software development lifecycle (SDLC)?
Options
Q: 2
Which mitigation technique can be used to fight against a denial of service threat?
Options
Q: 3
Which type of security analysis is performed by reviewing source code line-by-line after other
security analysis techniques have been executed?
Options
Q: 4
The security team has received notice of an insecure direct object reference vulnerability in a third-
party component library that could result in remote code execution. The component library was
replaced and is no longer being used within the application.
How should the organization remediate this vulnerability?
Options
Q: 5
What sits between a browser and an internet connection and alters requests and responses in a way
the developer did not intend?
Options
Q: 6
Which software-testing technique can be automated or semi-automated and provides invalid,
unexpected, or random data to the inputs of a computer software program?
Options
Q: 7
Which secure coding best practice says to require authentication before allowing any files to be
uploaded and to limit the types of files to only those needed for the business purpose?
Options
Q: 8
Which mitigation technique is used to fight against an identity spoofing threat?
Options
Q: 9
Which privacy impact statement requirement type defines processes to keep personal information
updated and accurate?
Options
Q: 10
Company leadership has discovered an untapped revenue stream within its customer base and wants
to meet with IT to share its vision for the future and determine whether to move forward.
Which phase of the software development lifecycle (SDLC) is being described?
Options
Question 1 of 10
