WGU-KEO1 Exam Details

  • Exam Code
    :WGU-KEO1
  • Exam Name
    :WGU Secure Software Design (D487, KEO1)
  • Certification
    :WGU University Certifications
  • Vendor
    :WGU University
  • Total Questions
    :133 Q&As
  • Last Updated
    :Jul 09, 2026

WGU University WGU-KEO1 Online Questions & Answers

  • Question 1:

    Using a web-based common vulnerability scoring system (CVSS) calculator, a security response team member performed an assessment on a reported vulnerability in the company's claims intake component. The base score of the vulnerability was 3.5 and changed to 5.9 after adjusting temporal and environmental metrics. Which rating would CVSS assign this vulnerability?

    A. Critical severity
    B. High severity
    C. Low severity
    D. Medium severity

  • Question 2:

    During fuzz testing of the new product, an exception was thrown on the order entry view, which caused a full stack dump to be displayed in the browser window that included function names from the source code. How should existing security controls be adjusted to prevent this in the future?

    A. Ensure privileges are restored after application exceptions
    B. Ensure all exceptions are handled in a standardized way
    C. Ensure private information is not logged
    D. Ensure sensitive information is scrubbed from all error messages

  • Question 3:

    Automated security testing was performed by attempting to log in to the new product with a known username using a collection of passwords. Access was granted after a few hundred attempts. How should existing security controls be adjusted to prevent this in the future?

    A. Ensure passwords are encrypted when stored in persistent data stores
    B. Ensure authentication controls are resistant to brute force attacks
    C. Ensure strong password policies are enforced
    D. Ensure credentials and authentication tokens are encrypted during transit

  • Question 4:

    An organization requires developers to attend mandatory security training that covers common vulnerabilities and secure coding standards. Which category of secure software best practices does this represent?

    A. Code review
    B. Architecture analysis
    C. Training
    D. Penetration testing

  • Question 5:

    Senior IT staff has determined that a new product will be hosted in the cloud and will support web and mobile users. Developers will need to deliver secure REST services. Android and IOS mobile apps. and a web application. Developers are currently determining how to deliver each part of the overall product. Which phase of the software development lifecycle (SDLC) is being described?

    A. Maintenance
    B. End of life
    C. Deployment
    D. Design

  • Question 6:

    The software security team prepared a detailed schedule napping security development lifecycle phases to the type of analysis they will execute. Which design and development deliverable aid the team prepare?

    A. Design security review
    B. Updated threat modeling artifacts
    C. Privacy implementation assessment results
    D. Security test plans

  • Question 7:

    Which architecture deliverable identifies the organization's tolerance to security issues and how the organization plans to react if a security issue occurs?

    A. Threat Modeling Artifacts
    B. Risk Mitigation Plan
    C. Business Requirements
    D. Policy Compliance Analysis

  • Question 8:

    Which secure coding best practice says to assume all incoming data should be considered untrusted and should be validated to ensure the system only accepts valid data?

    A. General coding practices
    B. Input validation
    C. Session management
    D. System configuration

  • Question 9:

    Which type of security analysis is performed by injecting malformed data into open interfaces of an executable or running application and is most commonly executed during the testing or deployment phases of the SDLC?

    A. Static Analysis
    B. Fuzz Testing
    C. Dynamic Analysis
    D. Manual Code Review

  • Question 10:

    A recent vulnerability scan uncovered an XML external entity (XXE) Haw that could allow attackers to return the contents of a system file by including a specific payload in an XML request. How should the organization remediate this vulnerability?

    A. Ensure audit trails exist for all sensitive transactions
    B. Disable resolution of external entities in the parsing library
    C. Enforce role-based authorization in all application layers
    D. Ensure authentication cookies are encrypted

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only WGU University exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your WGU-KEO1 exam preparations and WGU University certification application, do not hesitate to visit our Vcedump.com to find your solutions here.