Test your basic knowledge |

CISSP Security Architecture And Design

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. What does the * (star) property mean in the Bell-LaPadula model?






2. The *-Property rule is refered to as ____________.






3. Discretionary protection






4. Levels of Security and Levels of Trust Lower Letters of the alphabet represent higher levels of security. Higher numbers indicate a greater level of trust.






5. In B2 Subjects and devices requre labels and the system must NOT allow ________. No Trapdoors exists.






6. According to the Orange Book - which security level is the first to require a system to protect against covert timing channels?






7. Logical access control mechanisms are used to enforce authentication and the uniquenes of each individual's identification.






8. Access control labels must be associated properly with objects.






9. A form of ROM(Read-Only Memory) that can be modified after it has been manufactured. It can only be programmed only one time.






10. The Bell-LaPadula Model is a _______________.






11. In both the Bell-LaPadula and Biba Models if the word "* or Star is used - _______________.






12. When a portion of primary memory is accessed by specifying the actual address of the memory location






13. The Red Book aka Trusted Network Interpretation (TNI) - provides _________________ for Trusted computer and communications network systems under the areas of assurance requirements






14. The Physical memory address that the CPU uses






15. Should always trace to individuals responsible for observing and recording the data






16. As per FDA data should be ______________________________.






17. Discretionary access control is based on individuals and/or groups. It requires a separation of users and information and identification and authentication of individual entities






18. Which Orange Book evaluation level is described as "Controlled Access Protection"? - This class requires a more granular method of providing access control. The system must enforce strict logon procedures and provide decision-making capabilites when






19. A1 is also called "Verified Design" and requires formal verification of the design and specifications.






20. In the Orange Book - functionality and assurance are NOT _____________ as they are in the ITSEC and the Common Criteria.






21. Succesfully Evaluated products are placed on?






22. If an operating system permits executable objects to be used sequentially by multiple users without a refresh of the objects - what security problem is most likely to exist?






23. Based on The Bell-LaPadula model - because it allows for multilevel security to be integrated into the code.






24. Ssoftware that is stored within ROM (Read-Only Memory) - (ROM is nonvolatile)






25. What does the simple integrity axiom mean in the Biba model?






26. n this class more granularity is provided in each protection mechanism - and the programming code that is not necessary to support the security policy is excluded.






27. Reference Monitor is responsible for ______________ it compares the security labels of a subject and an object






28. All users have a clearance for and a formal need to know about - all data processed with the system.






29. For a subject to have read access to an object in a Multi-Level Security Policy - it is necessary that the subject's sensitivity label must ____________________.

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


30. What access control technique is also known as multilevel security?






31. Based on a known address with an offset value applied.






32. Security Policies that prevent information from flowing from a higher security level to a lower security level are called ____________.






33. Configuration management is also defined in the Orange Book BUT As a _____________________ and NOT an operational assurance requirement.






34. The reference monitor is an access control concept - Referring to ________________ that mediates all accesses to objects by subjects based on information in an access control database.






35. When a computer spends more time moving data from one small portion of memory to another THAN Actually processing the data






36. TCSEC addresses Confidentiality - but _____________ . The TCSEC focuses mainly on one attribute of Security Confidentiality.






37. In an automated system ________________ could be achieved by: A computer system designed to identify individuals responsible for any input.






38. B1 is also called "Labeled Security" and each data object must have a classification label and each subject a clearance label. On each access attempt - the classification and clearance are checked to verify that the access is permissible.






39. A subject at a given clearance may not read an object at a higher classification






40. A domain of trust that shares a single security policy and single management






41. Software - hardware and firmware must be able to be tested individually to ensure that each enforces the security policy in an effective manner throughout their lifetimes.






42. The subject must have Need to Know for ONLY the information they are trying to access.






43. Contains an Address of where the instruction and dara reside that need to be processed.






44. The type of environment that would require A1 systems is the most secure of secure environments. It deals with top-secret information and cannot adequately trust anyone using the systems without strict authentication - restrictions and auditing.






45. Which TCSEC level first addresses object reuse?






46. Data in Cache can be accessed much more quickly than Data






47. Which in the Orange Book ratings represents the highest level of trust?






48. Developed after the Bell-LaPadula model. Its a state machine model and is very similar to the Bell-LaPadula Model.






49. The Reserved hard drive space used to to extend RAM capabilites.






50. The biggest difference between System High Security Mode and Dedicated Security Mode is: ______.