Free Preparation Discussions
MENU
WGU (D487, KEO1) Secure Software Design Exam Questions
- Topic 1: Software Architecture and Design: This module covers topics in designing, analyzing, and managing large scale software systems. Students will learn various architecture types, how to select and implement appropriate design patterns, and how to build well structured, reliable, and secure software systems.
- Topic 2: Software Architecture Types: This section of the exam measures skills of Software Architects and covers various architecture types used in large scale software systems. Learners explore different architectural models and frameworks that guide system design decisions. The content addresses how to identify and evaluate architectural patterns that best fit specific project requirements and organizational needs.
- Topic 3: Design Pattern Selection and Implementation: This section of the exam measures skills of Software Developers and Software Architects and covers the selection and implementation of appropriate design patterns. Learners examine common design patterns and their applications in software development. The material focuses on understanding when and how to apply specific patterns to solve recurring design problems and improve code organization.
- Topic 4: Large Scale Software System Design: This section of the exam measures skills of Software Architects and covers the design and analysis of large scale software systems. Learners investigate methods for planning complex software architectures that can scale and adapt to changing requirements. The content addresses techniques for creating system designs that accommodate growth and handle increased workload demands.
- Topic 5: Software System Management: This section of the exam measures skills of Software Project Managers and covers the management of large scale software systems. Learners study approaches for overseeing software projects from conception through deployment. The material focuses on coordination strategies and management techniques that ensure successful delivery of complex software solutions.
- Topic 6: Reliable and Secure Software Systems: This section of the exam measures skills of Software Engineers and Security Architects and covers building well structured, reliable, and secure software systems. Learners explore principles for creating software that performs consistently and protects against security threats. The content addresses methods for implementing reliability measures and security controls throughout the software development lifecycle.
Free WGU WGU (D487, KEO1) Secure Software Design Exam Actual Questions
Note: Premium Questions for WGU (D487, KEO1) Secure Software Design were last updated On Apr. 15, 2026 (see below)
The product development team is preparing for the production deployment of recent feature enhancements. One morning, they noticed the amount of test data grew exponentially overnight. Most fields were filled with random characters, but some structured query language was discovered.
Which type of security development lifecycle (SDL) tool was likely being used?
Comprehensive and Detailed In-Depth Explanation:
The scenario described indicates that the system was subjected to inputs containing random data and some structured query language (SQL) statements, leading to an exponential increase in test data. This behavior is characteristic of fuzzing, a testing technique used to identify vulnerabilities by inputting a wide range of random or unexpected data into the system.
Fuzzing aims to discover coding errors and security loopholes by bombarding the application with malformed or unexpected inputs, observing how the system responds. The presence of random characters and SQL statements suggests that the fuzzing tool was testing for vulnerabilities such as SQL injection by injecting various payloads into the system.
This approach is part of the Verification business function in the OWASP SAMM, specifically within the Security Testing practice. Security testing involves evaluating the software to identify vulnerabilities that could be exploited, and fuzzing is a common technique employed in this practice to ensure the robustness and security of the application.
OWASP SAMM: Verification - Security Testing
In which step of the PASTA threat modeling methodology will the team capture infrastructure, application, and software dependencies?
The step of the PASTA threat modeling methodology where the team will capture infrastructure, application, and software dependencies is the Define technical scope step. This step involves detailing the technical elements of the project, which includes understanding and documenting the infrastructure, applications, and software dependencies that are critical to the system's operation and security.
The software security group is conducting a maturity assessment using the Building Security in Maturity Model (BSIMM). They are currently focused on reviewing attack models created during recently completed initiatives.
Which BSIMM domain is being assessed?
The Intelligence domain in the Building Security in Maturity Model (BSIMM) focuses on gathering and using information about software security. This includes understanding the types of attacks that are possible against the software being developed, which is why reviewing attack models falls under this domain. The BSIMM domain of Intelligence involves creating models of potential attacks on software (attack models), analyzing actual attacks that have occurred (attack intelligence), and sharing this information to improve security measures. By reviewing attack models, the software security group is essentially assessing the organization's ability to anticipate and understand potential security threats, which is a key aspect of the Intelligence domain.
What is the protection of information and information systems from unauthorized access, use, disclosure, disruption, modification, or distribution to provide confidentiality, integrity, and availability?
What is a countermeasure to the web application security frame (ASF) data validation/parameter validation threat category?
- Select Question Types you want
- Set your Desired Pass Percentage
- Allocate Time (Hours : Minutes)
- Create Multiple Practice tests with Limited Questions
- Customer Support
Freeman
11 days agoSelma
18 days agoTuyet
25 days agoEarleen
1 month agoRebeca
1 month agoLakeesha
2 months agoLettie
2 months agoOretha
2 months agoLettie
2 months agoDenna
3 months agoGerman
3 months agoKris
3 months agoTegan
3 months agoDelbert
4 months agoDorthy
4 months agoTheola
4 months agoWillie
4 months agoCherelle
5 months agoJenelle
5 months agoCecilia
5 months ago