Test your basic knowledge |

CISSP Security Architecture And Design

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. The Physical memory address that the CPU uses






2. The Policy must be explicit and well defined and enforced by the mechanisms within the system






3. The Biba model (introduced in 1977) - The Sutherland model (published in 1986) - The Brewer-Nash model (published in 1989)






4. When a computer spends more time moving data from one small portion of memory to another THAN Actually processing the data






5. What is called the formal acceptance of the adequacy of a system's overall security by management?






6. Security is made up of: System administration - ________ - installation and configuration mechanisms within the environment - and other security issues.






7. In ______________ the subject must have: Need to Know for ALL the information contained within the system.






8. Security Labels are not required until __________; thus C2 does not require security labels but B1 does






9. What Orange Book security rating is reserved for systems that have been evaluated but fail to meet the criteria and requirements of the higher divisions?






10. The reference monitor - in accordance with the security policy - ____________ that are made in the access control database.






11. The assignment of a specific individual to administer the security-related functions of a system.






12. Which increases the performance in a computer by overlapping the steps of different instructions?






13. Which is a straightforward approach that provides access rights to subjects for objects?






14. Developed after the Bell-LaPadula model. Its a state machine model and is very similar to the Bell-LaPadula Model.






15. The Biba Model - _____________: A subject cannot read data from a lower Integrity level " No Read Down"






16. Commonly referred to as The Big Mess Because of its lack of structure. MS-DOS is an example of a monolithic operation system






17. TCSEC addresses Confidentiality - but _____________ . The TCSEC focuses mainly on one attribute of Security Confidentiality.






18. In access control terms - the word "dominate" refers to ___________.






19. The reference monitor is an access control concept - Referring to ________________ that mediates all accesses to objects by subjects based on information in an access control database.






20. Documentation must be provided - including test - design - and specification document - user guides and manuals






21. In the Bell-LaPadula Model the Subject's Label contains ___________________.






22. The Security Kernel is the Core of The TCB and is the _____________ to building trusted computing systems.






23. A set of objects that a subject is able to access






24. If a system initializes in a secure state and all allowed state transitions are secure - the every subsequent state will be secure no matter what inputs occur.






25. The combination of RAM - Cache and the Processor Registers






26. Discretionary protection






27. Includes the security kernel as well as other security-related system functions that are within the boundary of the trusted computing base. System elements that are outside of the security perimeter need not be trusted.






28. In the Bell-LaPadula Model the Object's Label contains ___________________.






29. The Orange Book describes four hierarchical levels to categorize security systems. Which levels require mandatory protection?






30. A domain of trust that shares a single security policy and single management






31. Remaining parts of the operating system






32. Buffer overflows occurs when a program or process tries to store more data in a _____________ than it was intended to hold.






33. Which in the Orange Book ratings represents the highest level of trust?






34. Reference Monitor is responsible for ______________ it compares the security labels of a subject and an object






35. n this class more granularity is provided in each protection mechanism - and the programming code that is not necessary to support the security policy is excluded.






36. To ensure that the Trusted Computing Base is not tampered with during shipment or installation.






37. The security kernel is the mechanism that _____________ of the reference monitor concept.






38. Logical access control mechanisms are used to enforce authentication and the uniquenes of each individual's identification.






39. The security mechanisms and the system as a whole must perform predictably and acceptably in different situations continuously.






40. A portion of a process. When the thread is generated - it shares the same domain(resources) as its process.






41. Bell-LaPadula Model - ____________ : A subject at a given security level can NOT READ data that reside at a higher security level.






42. When a computer uses more than one CPU in parallel to execute instructions is known as?






43. Based on the Bell-LaPadula Security model - and evidence of reference monitor enforcement must be available.






44. What are the components of an object's sensitivity label?






45. Access control labels must be associated properly with objects.






46. This type of environment is highly secured environment that processes very sensitive information. It requires systems that are highly resistant to penetration.






47. Which Orange Book evaluation level is described as "Discretionary Security Protection"?






48. There is only only one class in Division D. Reserved for systems that have been evaluated but fail to meet the criteria and requirements of the higher divisions.






49. Mandatory Access requires that _____________ be attached to all objects.






50. Succesfully Evaluated products are placed on?