Secure Software Design

Here you have the best WGU University KEO1 practice exam questions

  • You have 66 total questions to study from
  • Each page has 5 questions, making a total of 14 pages
  • You can navigate through the pages using the buttons at the bottom
  • This questions were last updated on December 30, 2025
  • This site is not affiliated with or endorsed by WGU University.
Question 1 of 66
The software security group is conducting a maturity assessment using the Building Security in Maturity Model (BSIMM). They are currently focused on reviewing attack models created during recently completed initiatives.
Which BSIMM domain is being assessed?
Correct Answer: C

Question 2 of 66
Using a web-based common vulnerability scoring system (CVSS) calculator, a security response team member performed an assessment on a reported vulnerability in the user authentication component of the company’s new product. The basso score of the vulnerability was 8.3 and changed to 9.4 after adjusting temporal and environmental metrics.
Which rating would CVSS assign this vulnerability?
Correct Answer: B

Question 3 of 66
An individual is developing a software application that has a back-end database and is concerned that a malicious user may run the following SQL query to pull information about all accounts from the database:
SELECT * FROM accounts WHERE accountID=’ “ ‘ or ‘1’=’1’;
Which technique should be used to detect this vulnerability without running the source codes?
Correct Answer: C

Question 4 of 66
Company leadership has contracted with a security firm to evaluate the vulnerability of all externally facing enterprise applications via automated and manual system interactions.
Which security testing technique is being used?
Correct Answer: C

Question 5 of 66
Which secure coding practice involves clearing all local storage as soon as a user logs off for the night and will automatically log a user out after an hour of inactivity?
Correct Answer: D