Test your basic knowledge |

CISSP Security Architecture And Design

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Simpler instructions that require fewer clock cycles to execute.






2. Which uses Protection Profiles and Security Targets?






3. Which would be designated as objects on a MAC system?






4. Bell-LaPadula Model -______________: A subject in a given security level can NOT WRITE information to a LOWER security level.






5. The Simple Security rule is refered to as______________.






6. The biggest difference between System High Security Mode and Dedicated Security Mode is: ______.






7. Which describe a condition when RAM and Secondary storage are used together?






8. The Physical memory address that the CPU uses






9. n this class more granularity is provided in each protection mechanism - and the programming code that is not necessary to support the security policy is excluded.






10. Requires more stringent authentication mechanisms and well-defined interfaces among layers.






11. Reference Monitor is responsible for ______________ it compares the security labels of a subject and an object






12. The Orange book does NOT Cover ________________ - And Database management systems






13. The Security Model Incorporates the ____________ that should be enforced in the system.






14. The Orange Book describes four hierarchical levels to categorize security systems. Which levels require mandatory protection?






15. B3 is also called "Security Domains" and imposes more granularity in each protection mechanism.






16. The subject must have Need to Know for ONLY the information they are trying to access.






17. In Access Control terms it means to be higher than or equal to. In the Bell-Lapadula Model - this is refered to as the dominance relation - which is the relationship of the subject's clearance to the object's classification

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


18. Which is a straightforward approach that provides access rights to subjects for objects?






19. What is called the formal acceptance of the adequacy of a system's overall security by management?






20. A set of objects that a subject is able to access






21. A nonvolatile storage media etc computer hard drive - floppy disks and CD-ROMs






22. Using TPs (Transformation Procedures) to modify CDIs (Constrained Data) items is refered to as Well-Formed transaction






23. The group that oversees the processes of evaluation within TCSEC is?






24. Operating System Kernel






25. The _________________ specified in the Orange Book are: System architecture - System integrity - Covert channel analysis - Trusted facility management and Trusted recovery.






26. Which Orange Book evaluation level is described as "Controlled Access Protection"? - This class requires a more granular method of providing access control. The system must enforce strict logon procedures and provide decision-making capabilites when






27. Discretionary access control is based on individuals and/or groups. It requires a separation of users and information and identification and authentication of individual entities






28. The security kernel is the mechanism that _____________ of the reference monitor concept.






29. Bell-LaPadula Model - ______________: A subject that has read and write capabilities can only perform those functions at the same security level - nothing higher and nothing lower.






30. Bell-LaPadula model was proposed for enforcing access control in _____________________.






31. A1 is also called "Verified Design" and requires formal verification of the design and specifications.






32. Levels of Security and Levels of Trust Lower Letters of the alphabet represent higher levels of security. Higher numbers indicate a greater level of trust.






33. There is only only one class in Division D. Reserved for systems that have been evaluated but fail to meet the criteria and requirements of the higher divisions.






34. In ______________ the subject must have: Need to Know for ALL the information contained within the system.






35. The Bell-LaPaula Model's main goal was to ___________________ in an unauthorized manner. (Developed by the US gov)






36. A ring protection system ________: User mode programs from direct access to peripherals and requires them to make use of services running at more privileged levels.






37. Contains an Address of where the instruction and dara reside that need to be processed.






38. The Biba Model - ______________: A subject cannot request service (invoke) to subjects of higher integrity






39. If a system initializes in a secure state and all allowed state transitions are secure - the every subsequent state will be secure no matter what inputs occur.






40. Involves sharing the processor amoung all ready processes






41. An abstract machine which must mediate all access to subjects to objects - be protected from modification - be verifiable as correct - and is always invoked






42. In B1 the security policy is based on Informal statement and the design specifications are reviewed and verified where as in B2 the ___________________ - and the system design and implementation are subject to more thorough review and testing procedu






43. Which TCSEC level first addresses object reuse?






44. Remaining parts of the operating system






45. Can be erased - modified and upgraded.






46. Bell-LaPadula Model - ____________ : A subject at a given security level can NOT READ data that reside at a higher security level.






47. The C2 evaluation class of the _________________ offers controlled access protection.






48. Commonly referred to as The Big Mess Because of its lack of structure. MS-DOS is an example of a monolithic operation system






49. A Policy based control. All objects and systems have a sensitivity level assigned to them






50. Certification is a Technical review that assesses the _____________ - where as Accreditation is management's Official acceptance of the information in the Certification process findings.