70-465 Question #44: Real Exam Question with Answer & Explanation

The correct answer is D: Signed stored procedures. To meet security requirements for Application1, signed stored procedures allow users to execute procedures with elevated permissions without granting direct table access, enforcing least-privilege access control at the database level.

Submitted by manish99· Mar 5, 2026Design database security solutions

Question

You need to recommend a solution for Application1 that meets the security requirements. What should you include in the recommendation?

Options

AEncrypted columns
BCertificate Authentication
CSecure Socket Layer (SSL)
DSigned stored procedures

Explanation

To meet security requirements for Application1, signed stored procedures allow users to execute procedures with elevated permissions without granting direct table access, enforcing least-privilege access control at the database level.

Common mistakes.

A. Encrypted columns protect data at rest from unauthorized viewing but do not control which users or applications can execute specific database operations or restrict direct table access.
B. Certificate Authentication is used to authenticate identities connecting to SQL Server but does not control the permission scope of operations performed once connected, which is the core security requirement here.
C. SSL/TLS secures data in transit between the client and the database server but does not address authorization or privilege escalation controls needed to restrict what operations Application1 can perform on the database.

Concept tested. SQL Server signed stored procedures for least-privilege access

Reference. https://learn.microsoft.com/en-us/sql/relational-databases/security/authentication-access/signing-stored-procedures-with-a-certificate

Topics

#Stored procedure security#Code signing#Database permissions

Community Discussion

No community discussion yet for this question.

Full 70-465 Practice Browse All 70-465 Questions