Test your basic knowledge |

CISSP Security Architecture And Design

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. A channel within a computer system or network that is designed for the authorized transfer of information is identified as a(n)?






2. I/O drivers and utilities






3. Based on the Bell-LaPadula Security model - and evidence of reference monitor enforcement must be available.






4. When a computer spends more time moving data from one small portion of memory to another THAN Actually processing the data






5. Which TCSEC level first addresses object reuse?






6. The Security Model Incorporates the ____________ that should be enforced in the system.






7. A domain of trust that shares a single security policy and single management






8. Which can be used as a covert channel?






9. The Security Kernel is the Core of The TCB and is the _____________ to building trusted computing systems.






10. The Availability - Integrity and confidentiality requirements of multitasking operating systems






11. What does the simple security (ss) property mean in the Bell-LaPadula model?






12. The Policy must be explicit and well defined and enforced by the mechanisms within the system






13. A subject at a given clearance may not read an object at a higher classification






14. The Indexed memory addresses that software uses






15. B1 is the ___________________ of the Trusted Network Interpretation (TNI) or TCSEC that offers labeled security protection.






16. When a computer uses more than one CPU in parallel to execute instructions is known as?






17. Commonly referred to as The Big Mess Because of its lack of structure. MS-DOS is an example of a monolithic operation system






18. The assignment of a specific individual to administer the security-related functions of a system.






19. Bell-LaPadula - ______________: This rule is based on named subjects and objects. It specifies that specific permissions allow a subject to pass on permissions to pass on permissions at its own discretion. These permissions are stored in an access ma






20. The Bell-LaPadula Model is a _______________.






21. A nonvolatile storage media etc computer hard drive - floppy disks and CD-ROMs






22. A portion of a process. When the thread is generated - it shares the same domain(resources) as its process.






23. TCB contains The Security Kernel and all ______________.






24. The Orange book requires protection against two_____________ - which are these Timing and Storage






25. The object reuse concept must also be invoked - meaning that any medium holding data must not contain any remnants of information after it is released for another subject to use. All data must be efficiently erased once the subject is doen with the m






26. As per FDA data should be ______________________________.






27. Levels of Security and Levels of Trust Lower Letters of the alphabet represent higher levels of security. Higher numbers indicate a greater level of trust.






28. What is called the formal acceptance of the adequacy of a system's overall security by management?






29. When the RAM and secondary storage are combined the result is __________.






30. Accreditation is also defined as an ____________________ by a designated authority that an information system is approved to operate in a particular security configuration with a prescribed set of safeguards






31. The hardware - firmware and software elements of a trusted computing base that implement the reference monitor concept.






32. Mandatory Access requires that _____________ be attached to all objects.






33. Trusted facility management is an assurance requirement only for ________________.






34. Which uses Protection Profiles and Security Targets?






35. For rhe type of environment that processes sensitive data that require a higher degree of security. It requires systems that are relatively resistant to peneration and compromise






36. The reference monitor is an access control concept - Referring to ________________ that mediates all accesses to objects by subjects based on information in an access control database.






37. The Orange Book describes four hierarchical levels to categorize security systems. Which levels require mandatory protection?






38. Mediates all access and Functions between subjects and objects.






39. TCSEC addresses Confidentiality - but _____________ . The TCSEC focuses mainly on one attribute of Security Confidentiality.






40. The Bell-LaPaula Model's main goal was to ___________________ in an unauthorized manner. (Developed by the US gov)






41. Access control labels must be associated properly with objects.






42. Which evaluation class of the Trusted Network Interpretation (TNI) offers security domains?






43. Using TPs (Transformation Procedures) to modify CDIs (Constrained Data) items is refered to as Well-Formed transaction






44. In B2 Distinct address spaces must be provided to _________ - and a covert channel analysis is conducted. B2 adds assurance by adding requirements to the design of the system






45. Requires more stringent authentication mechanisms and well-defined interfaces among layers.






46. Bell-LaPadula Model - ______________: A subject that has read and write capabilities can only perform those functions at the same security level - nothing higher and nothing lower.






47. n this class more granularity is provided in each protection mechanism - and the programming code that is not necessary to support the security policy is excluded.






48. What model use an access control triples and requires that the system maintain separation of duty ?






49. Has two individual assurace ratings. C1 and C2. The Higher the number of assurance rating the greater the protection






50. The omission of networks and network components in the TCSEC was recognized and addressed in the "Trusted Network Interpretation of the TCSEC" otherwise known as ___________.