SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
CISSP Security Architecture And Design
Start Test
Study First
Subjects
:
certifications
,
it-skills
,
cissp
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Bell-LaPadula Model - ______________: A subject that has read and write capabilities can only perform those functions at the same security level - nothing higher and nothing lower.
B2 rating
B3 - Rating
B3 - Security Domains
The Strong star property rule
2. Subjects and Objects cannot change their security levels once they have been instantiated (created)
The Tranqulity principle (The Bell-LaPadula Model)
Programmable Read-Only Memory (PROM)
Primary storage
The Simple Security Property
3. When a computer spends more time moving data from one small portion of memory to another THAN Actually processing the data
The Red Book
Division D - Minimal Protection
C2 - Controlled Access Protection
Thrashing
4. If a system initializes in a secure state and all allowed state transitions are secure - the every subsequent state will be secure no matter what inputs occur.
Its classification label (Top Secret - Secret or confidential)
Direct Addressing
Basic Security Theorem (used in computer science) definition
B3 - Security Domains
5. A nonvolatile storage media etc computer hard drive - floppy disks and CD-ROMs
Secondary Storage
The reference monitor
The Security Kernel
Absolute addresses
6. The Bell-LaPadula Model is a _______________.
B2
Operational assurance requirements
Subject to Object Model
Trusted facility management
7. In Access Control terms it means to be higher than or equal to. In the Bell-Lapadula Model - this is refered to as the dominance relation - which is the relationship of the subject's clearance to the object's classification
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
8. The biggest difference between System High Security Mode and Dedicated Security Mode is: ______.
Trusted Network Interpretation (TNI)
Orange Book - A1
The Strong star property rule
Need-to-know
9. What Orange Book security rating is reserved for systems that have been evaluated but fail to meet the criteria and requirements of the higher divisions?
Polyinstantiation
Access Matrix model
D
Execution Domain
10. A form of ROM(Read-Only Memory) that can be modified after it has been manufactured. It can only be programmed only one time.
Security Policy is clearly defined and documented
A Base Register (Memory Management)
Programmable Read-Only Memory (PROM)
Assigned labels
11. In an automated system ________________ could be achieved by: A computer system designed to identify individuals responsible for any input.
Accountability - Orange Book
Multiprocessing
Prevent secret information from being accessed
attributability
12. The Indexed memory addresses that software uses
Virtual storage
Logical addresses
Compare the security labels
The Trusted Computing Base (TCB)
13. Mandatory Protection
No write down
Bell-LaPadula Model
Orange Book B
The security perimeter
14. What prevents a process from accessing another process' data?
Multitasking
Process isolation
Direct Addressing
Isolate processes
15. The group that oversees the processes of evaluation within TCSEC is?
The "No read Up" rule
B3
Trusted Products Evaluation Program (TPEP)
Continuous protection - O/B
16. The Biba Model - _____________: A subject cannot read data from a lower Integrity level " No Read Down"
The Thread (memory Management)
Clark-Wilson Model
Simple Integrity Axiom
Integrity
17. Execute one instruction at a time.
Scalar processors
Continuous protection - O/B
The Common Criteria
Primary storage
18. The reserved hard drive space used to Extend RAM capabilities. Windows system use the pagefile.sys file to reserve this space
Swap Space
Compare the security labels
Models concerned with integrity
A single classification and a Compartment Set
19. In both the Bell-LaPadula and Biba Models if the word "Simple is used ______________.
Clark-Wilson Model
D
The rule is talking about "Reading"
Division D - Minimal Protection
20. Which Orange Book evaluation level is described as "Discretionary Security Protection"?
C1
Orange Book - B1
Isolate processes
The "No read Up" rule
21. Applications and user activity
Accreditation
Life Cycle Assurance Requirement
The Strong star property rule
Ring 3
22. Which Orange Book evaluation level is described as "Verified Design"?
The "No write Down" Rule
C2 - Controlled Access Protection
A security kernel
A1
23. Reference Monitor is responsible for ______________ it compares the security labels of a subject and an object
A Limit Register (Memory Management)
Enforces the rules
A and B
Access control to the objects by the subjects
24. B1 is also called "Labeled Security" and each data object must have a classification label and each subject a clearance label. On each access attempt - the classification and clearance are checked to verify that the access is permissible.
No write down
Multilevel Security Policies
The Thread (memory Management)
Orange Book - B1
25. B3 is also called "Security Domains" and imposes more granularity in each protection mechanism.
Orange Book - B3
A1 - Rating
Virtual storage
Files - directories and devices
26. Requires more stringent authentication mechanisms and well-defined interfaces among layers.
The Biba Model
B2 - Structured Protection
Attributable data
Multiprocessing
27. The total(sum)combination of protection mechanisms within a computer system. The TCB includes hardware - software - and firmware.
Need-to-know
Indexed addressing
The Integrity of data within applications
The Trusted Computing Base (TCB)
28. In B2 Distinct address spaces must be provided to _________ - and a covert channel analysis is conducted. B2 adds assurance by adding requirements to the design of the system
Execution Domain
The TCSEC - Aka Orange Book
Isolate processes
NOT Integrity
29. In both the Bell-LaPadula and Biba Models if the word "* or Star is used - _______________.
Subject to Object Model
Primary storage
*-Integrity Axiom
The Rule is talking about writing
30. Components considered as part of the Trusted Computing Base (from the Orange Book) are?
Real storage
Trusted hardware - Software and Firmware
Prohibits
In C2 - Controlled Access Protection environment
31. Bell-LaPadula Model -______________: A subject in a given security level can NOT WRITE information to a LOWER security level.
The *-Property rule (Star property)
No read down
Accountability - Orange Book
C2 - Controlled Access Protection
32. Involves sharing the processor amoung all ready processes
All Mandatory Access Control (MAC) systems
Multitasking
Orange Book - B3
Security Policy - Orange Book
33. TCSEC addresses Confidentiality - but _____________ . The TCSEC focuses mainly on one attribute of Security Confidentiality.
NOT Integrity
The rule is talking about "Reading"
Higher or equal to access class
Physical security
34. The Physical memory address that the CPU uses
Absolute addresses
B1 - Labeled Security rating
A Thread
The Security Kernel
35. The Reserved hard drive space used to to extend RAM capabilites.
No write down
Swap Space
Orange Book - D
A single classification and a Compartment Set
36. Mandatory Access requires that _____________ be attached to all objects.
Ring 1
Sensitivity labels
C1 - Discrection Security Protection is a type of environment
Dominate the object's sensitivity label
37. A is a form of EPROM - but its data storage can be erased and modified electrically by onboard programming circuitry and signals.
Electrically Erasable and Programmable Read-Only Memory (EEPROM)
C1 - Discretionary Security Protection
Process isolation
System High Security Mode
38. The hardware - firmware and software elements of a trusted computing base that implement the reference monitor concept.
Models concerned with integrity
The Thread (memory Management)
Totality of protection mechanisms
The security kernel
39. Based on the Bell-LaPadula Security model - and evidence of reference monitor enforcement must be available.
Division B - Mandatory Protection Architecture
The Security Kernel
Accreditation
The Common Criteria
40. What does the * (star) property mean in the Bell-LaPadula model?
A Limit Register (Memory Management)
Government and military applications
Polyinstantiation
No write down
41. Which in the Orange Book ratings represents the highest level of trust?
C1 - Discretionary Security Protection
Physical security
B2
Thrashing
42. Remaining parts of the operating system
Orange Book A
Complex Instruction Set Computers (CISC)
Ring 1
Absolute addresses
43. Each data object must contain a classification label and each subject must have a clearance label.
A Layered Operating System Architecure
Real storage
B3
B1 - Labeled Security
44. There is only only one class in Division D. Reserved for systems that have been evaluated but fail to meet the criteria and requirements of the higher divisions.
Be protected from modification
Trusted Distribution
Division D - Minimal Protection
Orange Book interpretations
45. Trusted facility management is an assurance requirement only for ________________.
Erasable and Programmable Read-Only Memory (EPROM)
Highly secure systems (B2 - B3 and A1)
First evaluation class
Higher or equal to access class
46. The omission of networks and network components in the TCSEC was recognized and addressed in the "Trusted Network Interpretation of the TCSEC" otherwise known as ___________.
Administrative declaration
A Limit Register (Memory Management)
Subject to Object Model
The Red Book
47. Which increases the performance in a computer by overlapping the steps of different instructions?
Subject to Object Model
Division D - Minimal Protection
The "No read Up" rule
Pipelining
48. Bell-LaPadula Model - ____________ : A subject at a given security level can NOT READ data that reside at a higher security level.
Simple Security Rule
Virtual storage
Swap Space
B1 - Labeled Security rating
49. To ensure that the Trusted Computing Base is not tampered with during shipment or installation.
C2 - Controlled Access Protection
Trusted Distribution
Enforces the rules
B3 - Rating
50. Security Policies that prevent information from flowing from a higher security level to a lower security level are called ____________.
Primary storage
Multilevel Security Policies
The security perimeter
The reference monitor
