Test your basic knowledge |

CISSP Security Architecture And Design

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. What is defined as the hardware - firmware and software elements of a trusted computing base that implement the reference monitor concept?






2. If a system initializes in a secure state and all allowed state transitions are secure - the every subsequent state will be secure no matter what inputs occur.






3. A subject at a given clearance may not read an object at a higher classification






4. Which would be designated as objects on a MAC system?






5. Which uses Protection Profiles and Security Targets?






6. Based on the Bell-LaPadula Security model - and evidence of reference monitor enforcement must be available.






7. The Red Book aka Trusted Network Interpretation (TNI) - provides _________________ for Trusted computer and communications network systems under the areas of assurance requirements






8. Security Policies that prevent information from flowing from a higher security level to a lower security level are called ____________.






9. The group that oversees the processes of evaluation within TCSEC is?






10. The security mechanisms and the system as a whole must perform predictably and acceptably in different situations continuously.






11. Mediates all access and Functions between subjects and objects.






12. What access control technique is also known as multilevel security?






13. Mandatory Protection






14. Bell-LaPadula - ______________: This rule is based on named subjects and objects. It specifies that specific permissions allow a subject to pass on permissions to pass on permissions at its own discretion. These permissions are stored in an access ma






15. Includes the security kernel as well as other security-related system functions that are within the boundary of the trusted computing base. System elements that are outside of the security perimeter need not be trusted.






16. Happen because input data is not checked for appropriate length at time of input






17. Which computer design approaches is based on the fact that in earlier technologies - the instruction fetch was the longest part of the cycle






18. Trusted facility management is an assurance requirement only for ________________.






19. Mandatory Access requires that _____________ be attached to all objects.






20. The centerpiece of the DoD Rainbow Series publications.Developed by the National Computer Security Center (NCSC)?






21. The Availability - Integrity and confidentiality requirements of multitasking operating systems






22. The Orange book requires protection against two_____________ - which are these Timing and Storage






23. When a vendor submits a product for evaluation - it submits it to the ____________.






24. A is a form of EPROM - but its data storage can be erased and modified electrically by onboard programming circuitry and signals.






25. The Security Kernel is the Core of The TCB and is the _____________ to building trusted computing systems.






26. The reserved hard drive space used to Extend RAM capabilities. Windows system use the pagefile.sys file to reserve this space






27. Execute one instruction at a time.






28. The object reuse concept must also be invoked - meaning that any medium holding data must not contain any remnants of information after it is released for another subject to use. All data must be efficiently erased once the subject is doen with the m






29. B1 is also called "Labeled Security" and each data object must have a classification label and each subject a clearance label. On each access attempt - the classification and clearance are checked to verify that the access is permissible.






30. This type of environment is highly secured environment that processes very sensitive information. It requires systems that are highly resistant to penetration.






31. What are the components of an object's sensitivity label?






32. When a computer uses more than one CPU in parallel to execute instructions is known as?






33. The total combination of protection mechanisms within a computer system






34. Involves sharing the processor amoung all ready processes






35. A system uses the Reference Monitor to ___________________ of a subject and an object?






36. The assignment of a specific individual to administer the security-related functions of a system.






37. The combination of RAM - Cache and the Processor Registers






38. Bell-LaPadula model was proposed for enforcing access control in _____________________.






39. In Access Control terms it means to be higher than or equal to. In the Bell-Lapadula Model - this is refered to as the dominance relation - which is the relationship of the subject's clearance to the object's classification

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


40. Another word for Primary storage and distinguishes physical memory from virtual memory.






41. When the RAM and secondary storage are combined the result is __________.






42. An organization within the National Security Agency (NSA) is responsible for Evaluating computer systems and products. The Trusted Product Evaluation program (TPEP) oversees the testing by approved entities of commercial products against a specific s






43. What Orange Book security rating is reserved for systems that have been evaluated but fail to meet the criteria and requirements of the higher divisions?






44. In both the Bell-LaPadula and Biba Models if the word "* or Star is used - _______________.






45. In both the Bell-LaPadula and Biba Models if the word "Simple is used ______________.






46. According to the Orange Book - trusted facility management is not required for which security levels?






47. A form of ROM(Read-Only Memory) that can be modified after it has been manufactured. It can only be programmed only one time.






48. Security Labels are not required until __________; thus C2 does not require security labels but B1 does






49. Which is an ISO standard product evaluation criteria that supersedes several different criteria






50. Simpler instructions that require fewer clock cycles to execute.







Sorry!:) No result found.

Can you answer 50 questions in 15 minutes?


Let me suggest you:

Browse all subjects

Browse all tests

Most popular tests



Major Subjects

Tests & Exams


AP
CLEP
DSST
GRE
SAT
GMAT

Browse all subjects

Browse all tests

Most popular tests