Test your basic knowledge |

CISSP Security Architecture And Design

Subjects : certifications, it-skills, cissp

Instructions:

Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can study here.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.

1. The reserved hard drive space used to Extend RAM capabilities. Windows system use the pagefile.sys file to reserve this space
Bell-LaPadula Model
Swap Space
A single classification and a Compartment Set
B3 - Security Domains

2. The Biba model (introduced in 1977) - The Sutherland model (published in 1986) - The Brewer-Nash model (published in 1989)
C1
Files - directories and devices
Models concerned with integrity
Thrashing

3. When the contents of the address defined in the program's instruction is added to that of an index register.
The security kernel
Orange Book B
Indexed addressing
Life-cycle assurance - O/B

4. When a portion of primary memory is accessed by specifying the actual address of the memory location
The Strong star property rule
Implement software or systems in a production environment
Direct addressing
System High Security Mode

5. Contains an Address of where the instruction and dara reside that need to be processed.
The Thread (memory Management)
security protection mechanisms
The "No read Up" rule
Attributable - original - accurate - contemporaneous and legible

6. Ensuring thta information does not flow from a higher security lever to a lower level in the Bell-LaPadula Model is referred to as ___________________ - which would take place through a "write down" operation. (An actual compromise occurs if and when
Controlling unauthorized downgrading of information
No read up
Buffer (temporary data storage area)
Sensitivity labels

7. The Reserved hard drive space used to to extend RAM capabilites.
The TCSEC - Aka Orange Book
Swap Space
Subject to Object Model
Erasable and Programmable Read-Only Memory (EPROM)

8. What model use an access control triples and requires that the system maintain separation of duty ?
All Mandatory Access Control (MAC) systems
Clark-Wilson
C2 - Controlled Access Protection
C2

9. According to the Orange Book - which security level is the first to require a system to protect against covert timing channels?
*-Integrity Axiom
B1
C1 - Discrection Security Protection is a type of environment
B3

10. System Architecture that separates system functionality into Hierarchical layers
attributability
A Layered Operating System Architecure
Files - directories and devices
Virtual Memory

11. The Orange book does NOT Cover ________________ - And Database management systems
Networks and Communications
Ring 3
Examples of Layered Operating Systems
B3

12. Requires more stringent authentication mechanisms and well-defined interfaces among layers.
Dominate the object's sensitivity label
B2 - Structured Protection
First evaluation class
Mandatory Access Control (MAC)

13. The Physical memory address that the CPU uses
The Integrity of data within applications
Absolute addresses
Virtual Memory
B3 - Security Domains

14. Security is made up of: System administration - ________ - installation and configuration mechanisms within the environment - and other security issues.
Physical security
Indexed addressing
B2 rating
A Layered Operating System Architecure

15. The reference monitor must mediate all access - _____________ - be verifiable as correct - and must always be invoked.
Controls the checks
Direct addressing
Discretionary Security Property (ds-property)
Be protected from modification

16. Mandatory Protection
Clark-Wilson
Orange Book B
The Strong star property rule
Integrity

17. Which addresses a portion of the primary memory by specifying the actual address of the memory location?
Trusted facility management
Direct Addressing
A single classification and a Compartment Set
Prohibits

18. The total(sum)combination of protection mechanisms within a computer system. The TCB includes hardware - software - and firmware.
C2 - Controlled Access Protection
Division C - Discretionary Protection
The Trusted Computing Base (TCB)
An abstract machine

19. Which can be used as a covert channel?
C1 - Discrection Security Protection is a type of environment
D
Programmable Read-Only Memory (PROM)
Storage and timing

20. Using TPs (Transformation Procedures) to modify CDIs (Constrained Data) items is refered to as Well-Formed transaction
Clark-Wilson Model
Security rating B
A security domain
Division B - Mandatory Protection Architecture

21. When a computer uses more than one CPU in parallel to execute instructions is known as?
Storage and timing
Physical security
The Evaluated Products List (EPL) with their corresponding rating
Multiprocessing

22. A subject at a given clearance may not read an object at a higher classification
B2
Programmable Read-Only Memory (PROM)
The Simple Security Property
Orange Book C

23. Bell-LaPadula Model -______________: A subject in a given security level can NOT WRITE information to a LOWER security level.
Simple Integrity Axiom
The Thread (memory Management)
The *-Property rule (Star property)
A security domain

24. What access control technique is also known as multilevel security?
Fail safe
Discretionary Security Property (ds-property)
Mandatory access control
Attributable - original - accurate - contemporaneous and legible

25. Based on a known address with an offset value applied.
Thrashing
The Security Kernel
Enforces the rules
Relative Addresses

26. Bell-LaPadula Model - ____________ : A subject at a given security level can NOT READ data that reside at a higher security level.
Orange Book - A1
Swap Space
Protection Rings Support
Simple Security Rule

27. Access control labels must be associated properly with objects.
Physical security
Security Policy is clearly defined and documented
Logical addresses
Labels - Orange Book

28. Users need to be Identified individually to provide more precise acces control and auditing functionality.
Erasable and Programmable Read-Only Memory (EPROM)
Continuous protection - O/B
C2 - Controlled Access Protection
An abstract machine

29. A process that resides in a privileged domain to be able to execute its instructions and process its data with the assurance that programs in a different domain can NOT negatively affect its environment.
Electrically Erasable and Programmable Read-Only Memory (EEPROM)
Identification - Orange Book
Execution Domain
The *-Property rule (Star property)

30. Users are trusted but a certain level of accountability is required. C2 over is seen as the most reasonable class for commmercial applications - but the level of protection is still relatively weak.
C1 - Discrection Security Protection is a type of environment
In C2 - Controlled Access Protection environment
Bell-LaPadula Model
Be protected from modification

31. The Orange Book describes four hierarchical levels to categorize security systems. Which levels require mandatory protection?
A and B
Simple Security Rule
C1
A Limit Register (Memory Management)

32. Verification Protection
Its Clearance Label (Top Secret - Secret - or Confidential)
Orange Book A
The National Computer Security Center (NCSC)
Trusted Distribution

33. A ring protection system ________: User mode programs from direct access to peripherals and requires them to make use of services running at more privileged levels.
Prohibits
Logical addresses
The National Computer Security Center (NCSC)
B2

34. Which is an ISO standard product evaluation criteria that supersedes several different criteria
A Layered Operating System Architecure
The Common Criteria
A security domain
Virtual storage

35. TCSEC provides a means to evaluate ______________________.
The trustworthiness of an information system
The Biba Model
Polyinstantiation
Electrically Erasable and Programmable Read-Only Memory (EEPROM)

36. Includes the security kernel as well as other security-related system functions that are within the boundary of the trusted computing base. System elements that are outside of the security perimeter need not be trusted.
The Strong star property rule
Types of covert channels
The security perimeter
Orange Book interpretations

37. The reference monitor - in accordance with the security policy - ____________ that are made in the access control database.
B1 - Labeled Security
Scalar processors
Controls the checks
Orange Book C

38. Which Orange Book evaluation level is described as "Discretionary Security Protection"?
Administrative declaration
Orange Book - B3
Orange Book A
C1

39. A channel within a computer system or network that is designed for the authorized transfer of information is identified as a(n)?
A1 - Rating
Overt channel
Files - directories and devices
Clark-Wilson

40. This class ("Structured Protection") requires more stringent authentication mechanisms and well-defined interfaces between layers. Subjects and devices require labels and the system must not allow covert channels.
Security Policy is clearly defined and documented
Orange Book - B2
Direct addressing
Indirect addressing

41. Which Orange Book evaluation level is described as "Controlled Access Protection"? - This class requires a more granular method of providing access control. The system must enforce strict logon procedures and provide decision-making capabilites when
Isolate processes
C2
Controls the checks
Protection Rings Support

42. The TCB is the ________________ within a computer system that work together to enforce a security policy.
Real storage
Totality of protection mechanisms
Fail safe
The Common Criteria

43. When a vendor submits a product for evaluation - it submits it to the ____________.
Security Policy is clearly defined and documented
Operational assurance requirements
The National Computer Security Center (NCSC)
C1 - Discretionary Security Protection

44. Bell-LaPadula Model - ______________: A subject that has read and write capabilities can only perform those functions at the same security level - nothing higher and nothing lower.
Clark-Wilson
The Strong star property rule
Prevent secret information from being accessed
Clark-Wilson Model

45. Which integrity model defines a constrained data item - an integrity verification procedure and a transformation procedure?
The Clark Wilson integrity model
Division B - Mandatory Protection
Ring 2
B3

46. Which is a straightforward approach that provides access rights to subjects for objects?
Access Matrix model
Constrained
Real storage
The reference monitor

47. Software - hardware and firmware must be able to be tested individually to ensure that each enforces the security policy in an effective manner throughout their lifetimes.
Life-cycle assurance - O/B
Dedicated Security Mode
B1
Complex Instruction Set Computers (CISC)

48. A set of objects that a subject is able to access
A Domain
The security kernel
Ring 3
A1 - Rating

49. Intended for environments that require systems to handle classified data.
B1 - Labeled Security rating
Documentation - Orange Book
B3
Types of covert channels

50. Certification is a Technical review that assesses the _____________ - where as Accreditation is management's Official acceptance of the information in the Certification process findings.
Security mechanisms and evalautes their effectivenes
Orange Book ratings
State machine model
Dedicated Security Mode

Sorry!:) No result found.

Can you answer 50 questions in 15 minutes?

Major Subjects
Tests & Exams AP CLEP DSST GRE SAT GMAT	Certifications CISSP go to https://www.isc2.org/ PMP ITIL RHCE MCTS More...	IT Skills Android Programming Data Modeling Objective C Programming Basic Python Programming Adobe Illustrator More...	Business Skills Advertising Techniques Business Accounting Basics Business Strategy Human Resource Management Marketing Basics More...
Soft Skills Body Language People Skills Public Speaking Persuasion Job Hunting And Resumes More...	Vocabulary GRE Vocab SAT Vocab TOEFL Essential Vocab Basic English Words For All Global Words You Should Know Business English More...	Languages AP German Vocab AP Latin Vocab SAT Subject Test: French Italian Survival Norwegian Survival More...	Engineering Audio Engineering Computer Science Engineering Aerospace Engineering Chemical Engineering Structural Engineering More...
Health Sciences Basic Nursing Skills Health Science Language Fundamentals Veterinary Technology Medical Language Cardiology Clinical Surgery More...	English Grammar Fundamentals Literary And Rhetorical Vocab Elements Of Style Vocab Introduction To English Major Complete Advanced Sentences Literature Homonyms More...	Math Algebra Formulas Basic Arithmetic: Measurements Metric Conversions Geometric Properties Important Math Facts Number Sense Vocab Business Math More...	Other Major Subjects Science Economics History Law Performing-arts Cooking Logic & Reasoning Trivia

Test your basic knowledge |

CISSP Security Architecture And Design

Sorry!:) No result found.

Can you answer 50 questions in 15 minutes?

Let me suggest you:

Browse all subjects

Browse all tests

Most popular tests

Major Subjects

Tests & Exams

Certifications

IT Skills

Business Skills

Soft Skills

Vocabulary

Languages

Engineering

Health Sciences

English

Math

Other Major Subjects

Browse all subjects

Browse all tests

Most popular tests