WGU-KEO1 Exam Details

  • Exam Code
    :WGU-KEO1
  • Exam Name
    :WGU Secure Software Design (D487, KEO1)
  • Certification
    :WGU University Certifications
  • Vendor
    :WGU University
  • Total Questions
    :133 Q&As
  • Last Updated
    :Jul 09, 2026

WGU University WGU-KEO1 Online Questions & Answers

  • Question 21:

    The product security incident response team (PSIRT) has decided to make a formal public disclosure, including base and temporal common vulnerability scoring system (CVSS) scores and a common vulnerabilities and exposures (CVE) ID report, of an externally discovered vulnerability. What is the most likely reason for making a public disclosure?

    A. The potential for increased public awareness of a vulnerability is probable, which could lead to higher risk for customers.
    B. The vulnerability reporter has threatened to make the finding public after being notified that their case was not credible.
    C. The response team has determined that the vulnerability is credible.
    D. Notification of a vulnerability from an external party has occurred.

  • Question 22:

    The organization has contracted with an outside firm to simulate an attack on the new software product and report findings and remediation recommendations. Which activity of the Ship SDL phase is being performed?

    A. Penetration testing
    B. Policy compliance analysis
    C. Open-source licensing review
    D. Final security review

  • Question 23:

    A security tool scans source code to identify insecure function calls without executing the application. Which type of analysis is this?

    A. Dynamic analysis
    B. Fuzz testing
    C. Static analysis
    D. Penetration testing

  • Question 24:

    What is the privacy impact rating of an application that stores personally identifiable information, monitors users with ongoing transfers of anonymous data, and changes settings without notifying the user?

    A. P1 high privacy risk
    B. P2 moderate privacy risk
    C. P3 low privacy risk
    D. P4 no privacy risk

  • Question 25:

    Which mitigation technique is used to fight against an identity spoofing threat?

    A. Require user authorization
    B. Filtering
    C. Audit trails
    D. Encryption

  • Question 26:

    An application enforces that users can only access resources explicitly assigned to their role. Which security principle is being implemented?

    A. Defense in depth
    B. Least privilege
    C. Separation of duties
    D. Data classification

  • Question 27:

    A software security team recently completed an internal assessment of the company's security assurance program. The team delivered a set of scorecards to leadership along with proposed changes designed to improve low-scoring governance, development, and deployment functions. Which software security maturity model did the team use?

    A. Building Security In Maturity Model (BSIMM)
    B. Open Web Application Security Project (OWASP) Open Software Assurance Maturity Model (SAMM)
    C. U.S. Department of Homeland Security Software Assurance Program D. International Organization for Standardization ISO/IEC 27034

  • Question 28:

    Which secure software design principle assumes attackers have the source code and specifications of the product?

    A. Open Design
    B. Psychological Acceptability
    C. Total Mediation
    D. Separation of Privileges

  • Question 29:

    The software security team has been tasked with assessing a document management application that has been in use for many years and developing a plan to ensure it complies with organizational policies. Which post-release deliverable is being described?

    A. Security strategy tor MandA products
    B. Security strategy for legacy code
    C. Post-release certifications
    D. External vulnerability disclosure response process

  • Question 30:

    What is a countermeasure to the web application security frame (ASF) authentication threat category?

    A. Role-based access controls restrict access
    B. Credentials and tokens are encrypted.
    C. Cookies have expiration timestamps.
    D. Sensitive information is scrubbed from error messages

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only WGU University exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your WGU-KEO1 exam preparations and WGU University certification application, do not hesitate to visit our Vcedump.com to find your solutions here.