Test your basic knowledge |

CISSP Security Architecture And Design

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Which evaluation class of the Trusted Network Interpretation (TNI) offers security domains?






2. Security Labels are not required until __________; thus C2 does not require security labels but B1 does






3. Ssoftware that is stored within ROM (Read-Only Memory) - (ROM is nonvolatile)






4. The combination of RAM - Cache and the Processor Registers






5. The process of Evaluating the security stance of the software or system against a selected set of standards or policies. This may precede accreditation but is not a required precursor.






6. The C2 evaluation class of the _________________ offers controlled access protection.






7. The security kernel is the mechanism that _____________ of the reference monitor concept.






8. The Security Model Incorporates the ____________ that should be enforced in the system.






9. All users have a clearance for and a formal need to know about - all data processed with the system.






10. Reference Monitor is responsible for ______________ it compares the security labels of a subject and an object






11. In the Bell-LaPadula Model the Object's Label contains ___________________.






12. The Bell-LaPaula Model's main goal was to ___________________ in an unauthorized manner. (Developed by the US gov)






13. For a subject to have read access to an object in a Multi-Level Security Policy - it is necessary that the subject's sensitivity label must ____________________.

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


14. The Biba Model is not concerned with security levels and confidentiality. It uses _________________.






15. The Biba Model adresses _____________________.






16. The Physical memory address that the CPU uses






17. In which users are processing information at the same sensitivity level; thus - strict access control and auditing measures are not required. It would be a trusted envirnment with low security concerns.






18. This class ("Structured Protection") requires more stringent authentication mechanisms and well-defined interfaces between layers. Subjects and devices require labels and the system must not allow covert channels.






19. Best defined as a mode of system termination that automatically leaves system processes and components in a secure state when a failure occurs or is detected in the system?






20. The reference monitor is an access control concept - Referring to ________________ that mediates all accesses to objects by subjects based on information in an access control database.






21. What does the * (star) property mean in the Bell-LaPadula model?






22. B1 is also called "Labeled Security" and each data object must have a classification label and each subject a clearance label. On each access attempt - the classification and clearance are checked to verify that the access is permissible.






23. Accreditation is also defined as an ____________________ by a designated authority that an information system is approved to operate in a particular security configuration with a prescribed set of safeguards






24. TCSEC addresses Confidentiality - but _____________ . The TCSEC focuses mainly on one attribute of Security Confidentiality.






25. What prevents a process from accessing another process' data?






26. Mediates all access and Functions between subjects and objects.






27. Based on the Bell-LaPadula Security model - and evidence of reference monitor enforcement must be available.






28. Which Orange Book evaluation level is described as "Verified Design"?






29. When a computer spends more time moving data from one small portion of memory to another THAN Actually processing the data






30. The Biba Model - ______________: A Subject cannot write data to an object at a higher integrity level (No write Up)






31. In the Orange Book - functionality and assurance are NOT _____________ as they are in the ITSEC and the Common Criteria.






32. Execute one instruction at a time.






33. In the Bell-LaPadula Model the Subject's Label contains ___________________.






34. The Bell-LaPadula Model is a _______________ that enforces Confidentiality aspect of access control. Formed by David Bell and Leonard LaPadula.






35. The centerpiece of the DoD Rainbow Series publications.Developed by the National Computer Security Center (NCSC)?






36. Another word for Primary storage and distinguishes physical memory from virtual memory.






37. Includes the security kernel as well as other security-related system functions that are within the boundary of the trusted computing base. System elements that are outside of the security perimeter need not be trusted.






38. A Policy based control. All objects and systems have a sensitivity level assigned to them






39. Components considered as part of the Trusted Computing Base (from the Orange Book) are?






40. In both the Bell-LaPadula and Biba Models if the word "Simple is used ______________.






41. Involves sharing the processor amoung all ready processes






42. Data in Cache can be accessed much more quickly than Data






43. Configuration management is also defined in the Orange Book BUT As a _____________________ and NOT an operational assurance requirement.






44. What does the simple security (ss) property mean in the Bell-LaPadula model?






45. TCSEC provides a means to evaluate ______________________.






46. In both the Bell-LaPadula and Biba Models if the word "* or Star is used - _______________.






47. Mandatory Access requires that _____________ be attached to all objects.






48. The biggest difference between System High Security Mode and Dedicated Security Mode is: ______.






49. A nonvolatile storage media etc computer hard drive - floppy disks and CD-ROMs






50. Accreditation is the authorization by management to _____________________. This authorization may be either provisional or full.