Test your basic knowledge |

CISSP Security Architecture And Design

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. In the Bell-LaPadula Model the Object's Label contains ___________________.






2. According to the Orange Book - trusted facility management is not required for which security levels?






3. What is called the formal acceptance of the adequacy of a system's overall security by management?






4. In both the Bell-LaPadula and Biba Models if the word "* or Star is used - _______________.






5. In the Bell-LaPadula Model the Subject's Label contains ___________________.






6. The reference monitor - in accordance with the security policy - ____________ that are made in the access control database.






7. System Architecture that separates system functionality into Hierarchical layers






8. The hardware - firmware and software elements of a trusted computing base that implement the reference monitor concept.






9. Software - hardware and firmware must be able to be tested individually to ensure that each enforces the security policy in an effective manner throughout their lifetimes.






10. TCB contains The Security Kernel and all ______________.






11. In the Orange Book - functionality and assurance are NOT _____________ as they are in the ITSEC and the Common Criteria.






12. A subject at a given clearance may not read an object at a higher classification






13. What does the simple security (ss) property mean in the Bell-LaPadula model?






14. A is a form of EPROM - but its data storage can be erased and modified electrically by onboard programming circuitry and signals.






15. Components considered as part of the Trusted Computing Base (from the Orange Book) are?






16. All users have a clearance for and a formal need to know about - all data processed with the system.






17. A set of objects that a subject is able to access






18. Using TPs (Transformation Procedures) to modify CDIs (Constrained Data) items is refered to as Well-Formed transaction






19. Operating System Kernel






20. This class ("Structured Protection") requires more stringent authentication mechanisms and well-defined interfaces between layers. Subjects and devices require labels and the system must not allow covert channels.






21. What does the * (star) property mean in the Bell-LaPadula model?






22. Bell-LaPadula Model - ____________ : A subject at a given security level can NOT READ data that reside at a higher security level.






23. Has two individual assurace ratings. C1 and C2. The Higher the number of assurance rating the greater the protection






24. n this class more granularity is provided in each protection mechanism - and the programming code that is not necessary to support the security policy is excluded.






25. Simpler instructions that require fewer clock cycles to execute.






26. As per FDA data should be ______________________________.






27. Involves sharing the processor amoung all ready processes






28. An organization within the National Security Agency (NSA) is responsible for Evaluating computer systems and products. The Trusted Product Evaluation program (TPEP) oversees the testing by approved entities of commercial products against a specific s






29. Contains the ending address






30. Mandatory Access requires that _____________ be attached to all objects.






31. To ensure that the Trusted Computing Base is not tampered with during shipment or installation.






32. For a subject to have read access to an object in a Multi-Level Security Policy - it is necessary that the subject's sensitivity label must ____________________.

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


33. Users need to be Identified individually to provide more precise acces control and auditing functionality.






34. Contains an Address of where the instruction and dara reside that need to be processed.






35. If an operating system permits executable objects to be used sequentially by multiple users without a refresh of the objects - what security problem is most likely to exist?






36. Contains the beginning address






37. Mediates all access and Functions between subjects and objects.






38. Bell-LaPadula model was proposed for enforcing access control in _____________________.






39. Certification is a Technical review that assesses the _____________ - where as Accreditation is management's Official acceptance of the information in the Certification process findings.






40. A1 is also called "Verified Design" and requires formal verification of the design and specifications.






41. Accreditation is the authorization by management to _____________________. This authorization may be either provisional or full.






42. An abstract machine which must mediate all access to subjects to objects - be protected from modification - be verifiable as correct - and is always invoked






43. Security is made up of: System administration - ________ - installation and configuration mechanisms within the environment - and other security issues.






44. The Simple Security rule is refered to as______________.






45. The Biba Model adresses _____________________.






46. What are the components of an object's sensitivity label?






47. Based on a known address with an offset value applied.






48. When the contents of the address defined in the program's instruction is added to that of an index register.






49. The Bell-LaPaula Model's main goal was to ___________________ in an unauthorized manner. (Developed by the US gov)






50. Which would be designated as objects on a MAC system?