Test your basic knowledge |

CISSP Security Architecture And Design

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. The Biba Model adresses _____________________.






2. Logical access control mechanisms are used to enforce authentication and the uniquenes of each individual's identification.






3. In both the Bell-LaPadula and Biba Models if the word "* or Star is used - _______________.






4. Succesfully Evaluated products are placed on?






5. Requires more stringent authentication mechanisms and well-defined interfaces among layers.






6. A system uses the Reference Monitor to ___________________ of a subject and an object?






7. In which users are processing information at the same sensitivity level; thus - strict access control and auditing measures are not required. It would be a trusted envirnment with low security concerns.






8. In B2 Subjects and devices requre labels and the system must NOT allow ________. No Trapdoors exists.






9. Discretionary protection






10. The omission of networks and network components in the TCSEC was recognized and addressed in the "Trusted Network Interpretation of the TCSEC" otherwise known as ___________.






11. Individual subjects must be uniquely identified.






12. A form of ROM(Read-Only Memory) that can be modified after it has been manufactured. It can only be programmed only one time.






13. According to the Orange Book - which security level is the first to require a system to protect against covert timing channels?






14. The reference monitor is an access control concept - Referring to ________________ that mediates all accesses to objects by subjects based on information in an access control database.






15. Has two individual assurace ratings. C1 and C2. The Higher the number of assurance rating the greater the protection






16. The reference monitor must mediate all access - _____________ - be verifiable as correct - and must always be invoked.






17. What does the simple security (ss) property mean in the Bell-LaPadula model?






18. Reference Monitor is responsible for ______________ it compares the security labels of a subject and an object






19. Contains the ending address






20. The Biba Model is not concerned with security levels and confidentiality. It uses _________________.






21. Commonly referred to as The Big Mess Because of its lack of structure. MS-DOS is an example of a monolithic operation system






22. Software - hardware and firmware must be able to be tested individually to ensure that each enforces the security policy in an effective manner throughout their lifetimes.






23. Which evaluation class of the Trusted Network Interpretation (TNI) offers security domains?






24. What prevents a process from accessing another process' data?






25. The Physical memory address that the CPU uses






26. Best defined as a mode of system termination that automatically leaves system processes and components in a secure state when a failure occurs or is detected in the system?






27. In B2 Distinct address spaces must be provided to _________ - and a covert channel analysis is conducted. B2 adds assurance by adding requirements to the design of the system






28. Accreditation is the authorization by management to _____________________. This authorization may be either provisional or full.






29. Discretionary access control is based on individuals and/or groups. It requires a separation of users and information and identification and authentication of individual entities






30. Components considered as part of the Trusted Computing Base (from the Orange Book) are?






31. n this class more granularity is provided in each protection mechanism - and the programming code that is not necessary to support the security policy is excluded.






32. A set of objects that a subject is able to access






33. Users are trusted but a certain level of accountability is required. C2 over is seen as the most reasonable class for commmercial applications - but the level of protection is still relatively weak.






34. System Architecture that separates system functionality into Hierarchical layers






35. B1 is also called "Labeled Security" and each data object must have a classification label and each subject a clearance label. On each access attempt - the classification and clearance are checked to verify that the access is permissible.






36. To ensure that the Trusted Computing Base is not tampered with during shipment or installation.






37. The Security Kernel is the Core of The TCB and is the _____________ to building trusted computing systems.






38. What are the components of an object's sensitivity label?






39. The Reserved hard drive space used to to extend RAM capabilites.






40. A process that resides in a privileged domain to be able to execute its instructions and process its data with the assurance that programs in a different domain can NOT negatively affect its environment.






41. The reference monitor - in accordance with the security policy - ____________ that are made in the access control database.






42. This type of environment is highly secured environment that processes very sensitive information. It requires systems that are highly resistant to penetration.






43. The Availability - Integrity and confidentiality requirements of multitasking operating systems






44. The Simple Security rule is refered to as______________.






45. When a computer spends more time moving data from one small portion of memory to another THAN Actually processing the data






46. A type of memory used for High-speed writing and reading activities.






47. What does the * (star) property mean in the Bell-LaPadula model?






48. In the Orange Book - functionality and assurance are NOT _____________ as they are in the ITSEC and the Common Criteria.






49. When a computer uses more than one CPU in parallel to execute instructions is known as?






50. The assignment of a specific individual to administer the security-related functions of a system.