D487 secure - Study guides, Class notes & Summaries

D487 SECURE SOFTWARE DESIGN EXAM ACTUAL EXAM LATEST COMPLETE 300 QUESTIONS AND CORRECT DETAILED ANSWERS JUST RELEASED

Which practice in the Ship (A5) phase of the security development cycle verifies whether the product meets security mandates? - ANS A5 policy compliance analysis Which post-release support activity defines the process to communicate, identify, and alleviate security threats? - ANS PRSA1: External vulnerability disclosure response What are two core practice areas of the OWASP Security Assurance Maturity Model (OpenSAMM)? - ANS Governance, Construction Which practice in the...

D487 SECURE SOFTWARE DESIGN EXAM ACTUAL EXAM LATEST COMPLETE 300 QUESTIONS AND CORRECT DETAILED ANSWERS JUST RELEASED

Which practice in the Ship (A5) phase of the security development cycle verifies whether the product meets security mandates? - ANS A5 policy compliance analysis Which post-release support activity defines the process to communicate, identify, and alleviate security threats? - ANS PRSA1: External vulnerability disclosure response What are two core practice areas of the OWASP Security Assurance Maturity Model (OpenSAMM)? - ANS Governance, Construction Which practice in the Ship ...

What are the two common best principles of software applications in the development process? Choose 2 answers. Quality code Secure code Information security Integrity Availability Quality code Secure code "Quality code" is correct. Quality code is efficient code that is easy to maintain and reusable. "Secure code" is correct. Secure code authorizes and authenticates every user transaction, logs the transaction, and denies all unauthorized requisitions. What ensures th...

SDLC Phase 1 planning - a vision and next steps are created SDLC Phase 2 requirements - necessary software requirements are determined SDLC Phase 3 design - requirements are prepared for the technical design SDLC Phase 4 implementation - the resources involved in the application from a known resource are determined SDLC Phase 5 testing - software is tested to verify its functions through a known environment SDLC Phase 6 deployment - security is pushed out SDLC...

WGU D487 SECURE SOFTWARE DESIGN PRE-ASSESSMENT TEST WITH VERIFIED ANSWERS. LATEST 2024/2025

D487 Secure SW Design Exam All Combined Review Questions With Revised Correct Answers What does DREAD stand for? - ANSWER damage potential, reproducibility, exploitability, affected users, and discoverability What is a weakness that can be exploited? - ANSWER vulnerability What is a unified conceptual framework for security auditing? - ANSWER Trike Threat Model What is the path an attacker can take to exploit a vulnerability? - ANSWER threat vector Wh...

Which practice in the Ship (A5) phase of the security development cycle verifies whether the product meets security mandates? - CORRECT ANSWER A5 policy compliance analysis Which post-release support activity defines the process to communicate, identify, and alleviate security threats? - CORRECT ANSWER PRSA1: External vulnerability disclosure response What are two core practice areas of the OWASP Security Assurance Maturity Model (OpenSAMM)? - CORRECT ANSWER Governance,...

Building Security In Maturity Model (BSIMM) A study of real-world software security initiatives organized so that you can determine where you stand with your software security initiative and how to evolve your efforts over time SAMM offers a roadmap and a well-defined maturity model for secure software development and deployment, along with useful tools for self-assessment and planning. Core OpenSAMM activities Governance Construction Verification Deployment static analysis ...