SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
CISSP Security Architecture And Design
Start Test
Study First
Subjects
:
certifications
,
it-skills
,
cissp
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. The reference monitor must mediate all access - _____________ - be verifiable as correct - and must always be invoked.
Models concerned with integrity
Be protected from modification
Examples of Layered Operating Systems
No read up
2. The Biba Model - ______________: A subject cannot request service (invoke) to subjects of higher integrity
Invocation Property
Models concerned with integrity
Accountability - Orange Book
Real storage
3. In Access Control terms it means to be higher than or equal to. In the Bell-Lapadula Model - this is refered to as the dominance relation - which is the relationship of the subject's clearance to the object's classification
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
4. B3 is also called "Security Domains" and imposes more granularity in each protection mechanism.
Trusted hardware - Software and Firmware
Indexed addressing
Orange Book - B3
C2 - Controlled Access Protection
5. Based on The Bell-LaPadula model - because it allows for multilevel security to be integrated into the code.
Process isolation
All Mandatory Access Control (MAC) systems
Pagefile.sys file
The security perimeter
6. Certification is a Technical review that assesses the _____________ - where as Accreditation is management's Official acceptance of the information in the Certification process findings.
B3 - Security Domains
Continuous protection - O/B
Security mechanisms and evalautes their effectivenes
Certification
7. The Biba Model adresses _____________________.
In C2 - Controlled Access Protection environment
Indexed addressing
The Integrity of data within applications
Fail safe
8. Which describe a condition when RAM and Secondary storage are used together?
Mandatory access control
Multilevel Security Policies
Virtual storage
The Clark Wilson integrity model
9. In access control terms - the word "dominate" refers to ___________.
Higher or equal to access class
Controlling unauthorized downgrading of information
Dedicated Security Mode
Virtual storage
10. What prevents a process from accessing another process' data?
B1 - Labeled Security
Process isolation
First evaluation class
Orange Book A
11. Ssoftware that is stored within ROM (Read-Only Memory) - (ROM is nonvolatile)
TCB (Trusted Computing Base)
'Dominate'
Its Clearance Label (Top Secret - Secret - or Confidential)
Firmware
12. The Biba Model - ______________: A Subject cannot write data to an object at a higher integrity level (No write Up)
B2
Clark-Wilson
Reduced Instruction Set Computers (RISC)
*-Integrity Axiom
13. The Reserved hard drive space used to to extend RAM capabilites.
Labels - Orange Book
Swap Space
The Biba Model
Virtual storage
14. Verification Protection
Programmable Read-Only Memory (PROM)
State machine model
Indirect addressing
Orange Book A
15. The Orange book requires protection against two_____________ - which are these Timing and Storage
Types of covert channels
Process isolation
The Security Kernel
Reduced Instruction Set Computers (RISC)
16. The reference monitor - in accordance with the security policy - ____________ that are made in the access control database.
B2 - Structured Protection
Life Cycle Assurance Requirement
Controls the checks
Ring 3
17. Which Orange Book evaluation level is described as "Discretionary Security Protection"?
C1
Reduced Instruction Set Computers (RISC)
Relative Addresses
Life Cycle Assurance Requirement
18. B1 is the ___________________ of the Trusted Network Interpretation (TNI) or TCSEC that offers labeled security protection.
First evaluation class
B3
A1
The reference monitor
19. Applications and user activity
Ring 3
Execution Domain
Ring 0
Life Cycle Assurance Requirement
20. Which increases the performance in a computer by overlapping the steps of different instructions?
Pipelining
Orange Book - B1
Erasable and Programmable Read-Only Memory (EPROM)
Orange Book - B3
21. Mandatory access control is enfored by the use of security labels.
The Thread (memory Management)
Division B - Mandatory Protection
The National Computer Security Center (NCSC)
The Trusted Computing Base (TCB)
22. Using TPs (Transformation Procedures) to modify CDIs (Constrained Data) items is refered to as Well-Formed transaction
Higher or equal to access class
Totality of protection mechanisms
Orange Book ratings
Clark-Wilson Model
23. Bell-LaPadula Model - ______________: A subject that has read and write capabilities can only perform those functions at the same security level - nothing higher and nothing lower.
An abstract machine
A Thread
The Strong star property rule
Multilevel Security Policies
24. TCSEC addresses Confidentiality - but _____________ . The TCSEC focuses mainly on one attribute of Security Confidentiality.
Its classification label (Top Secret - Secret or confidential)
security protection mechanisms
NOT Integrity
The Clark Wilson integrity model
25. In both the Bell-LaPadula and Biba Models if the word "Simple is used ______________.
The reference monitor
A1 - Rating
The rule is talking about "Reading"
C2 - Controlled Access Protection
26. Which addresses a portion of the primary memory by specifying the actual address of the memory location?
Logical addresses
Direct Addressing
A Thread
'Dominate'
27. A logical form of separation used by secure computing systems - Processes are _____________ so that each cannot access objects outside its permitted domain
Constrained
Files - directories and devices
B2
Virtual Memory
28. System Architecture that separates system functionality into Hierarchical layers
Orange Book ratings
Its Clearance Label (Top Secret - Secret - or Confidential)
An abstract machine
A Layered Operating System Architecure
29. Documentation must be provided - including test - design - and specification document - user guides and manuals
Documentation - Orange Book
Primary storage
Administrative declaration
The Clark Wilson integrity model
30. Remaining parts of the operating system
Ring 1
Scalar processors
The Biba Model
An abstract machine
31. The total(sum)combination of protection mechanisms within a computer system. The TCB includes hardware - software - and firmware.
C2 - Controlled Access Protection
The Trusted Computing Base (TCB)
B1 - Labeled Security
Security Policy is clearly defined and documented
32. What access control technique is also known as multilevel security?
Mandatory access control
Primary storage
Need-to-know
Orange Book interpretations
33. Subjects and Objects cannot change their security levels once they have been instantiated (created)
Logical addresses
The Tranqulity principle (The Bell-LaPadula Model)
A Base Register (Memory Management)
Ring 1
34. Contains the ending address
A Limit Register (Memory Management)
Orange Book - D
Scalar processors
Government and military applications
35. An organization within the National Security Agency (NSA) is responsible for Evaluating computer systems and products. The Trusted Product Evaluation program (TPEP) oversees the testing by approved entities of commercial products against a specific s
*-Integrity Axiom
Its Clearance Label (Top Secret - Secret - or Confidential)
Clark-Wilson
The National Computer Security Center (NCSC)
36. A is a form of EPROM - but its data storage can be erased and modified electrically by onboard programming circuitry and signals.
Sensitivity labels
Electrically Erasable and Programmable Read-Only Memory (EEPROM)
The Thread (memory Management)
B1 - Labeled Security
37. According to the Orange Book - which security level is the first to require a system to protect against covert timing channels?
security protection mechanisms
Ring 0
B3
Labels - Orange Book
38. The Biba Model is not concerned with security levels and confidentiality. It uses _________________.
Division C - Discretionary Protection
A lattice of Intergrity Levels
Constrained
Administrative declaration
39. Which would be designated as objects on a MAC system?
Direct Addressing
The trustworthiness of an information system
Files - directories and devices
Physical security
40. When a computer spends more time moving data from one small portion of memory to another THAN Actually processing the data
Relative Addresses
The "No read Up" rule
Subject to Object Model
Thrashing
41. THE (Technische Hogeschool Eindhoven) - VAX/VMS - Multics and Unix . THE and Multics are no longer in use
Orange Book - A1
Physical security
Examples of Layered Operating Systems
Government and military applications
42. Another word for Primary storage and distinguishes physical memory from virtual memory.
Need-to-know
Real storage
A Base Register (Memory Management)
Dominate the object's sensitivity label
43. Software - hardware and firmware must be able to be tested individually to ensure that each enforces the security policy in an effective manner throughout their lifetimes.
Life-cycle assurance - O/B
Orange Book interpretations
B1 - Labeled Security rating
Trusted Distribution
44. Minimal Security
security protection mechanisms
Dedicated Security Mode
The trustworthiness of an information system
Orange Book - D
45. Discretionary protection
Orange Book C
C2 - Controlled Access Protection
Ring 2
Isolate processes
46. Which can be used as a covert channel?
Storage and timing
Swap Space
International Standard 15408
Security mechanisms and evalautes their effectivenes
47. Execute one instruction at a time.
Direct addressing
Overt channel
Sensitivity labels
Scalar processors
48. The biggest difference between System High Security Mode and Dedicated Security Mode is: ______.
Controls the checks
*-Integrity Axiom
Continuous protection - O/B
Need-to-know
49. In B2 Distinct address spaces must be provided to _________ - and a covert channel analysis is conducted. B2 adds assurance by adding requirements to the design of the system
The reference monitor
Prevent secret information from being accessed
Isolate processes
The *-Property rule (Star property)
50. What does the simple integrity axiom mean in the Biba model?
*-Integrity Axiom
Security Policy
Types of covert channels
No read down
Can you answer 50 questions in 15 minutes?
Let me suggest you:
Browse all subjects
Browse all tests
Most popular tests
Major Subjects
Tests & Exams
AP
CLEP
DSST
GRE
SAT
GMAT
Certifications
CISSP go to https://www.isc2.org/
PMP
ITIL
RHCE
MCTS
More...
IT Skills
Android Programming
Data Modeling
Objective C Programming
Basic Python Programming
Adobe Illustrator
More...
Business Skills
Advertising Techniques
Business Accounting Basics
Business Strategy
Human Resource Management
Marketing Basics
More...
Soft Skills
Body Language
People Skills
Public Speaking
Persuasion
Job Hunting And Resumes
More...
Vocabulary
GRE Vocab
SAT Vocab
TOEFL Essential Vocab
Basic English Words For All
Global Words You Should Know
Business English
More...
Languages
AP German Vocab
AP Latin Vocab
SAT Subject Test: French
Italian Survival
Norwegian Survival
More...
Engineering
Audio Engineering
Computer Science Engineering
Aerospace Engineering
Chemical Engineering
Structural Engineering
More...
Health Sciences
Basic Nursing Skills
Health Science Language Fundamentals
Veterinary Technology Medical Language
Cardiology
Clinical Surgery
More...
English
Grammar Fundamentals
Literary And Rhetorical Vocab
Elements Of Style Vocab
Introduction To English Major
Complete Advanced Sentences
Literature
Homonyms
More...
Math
Algebra Formulas
Basic Arithmetic: Measurements
Metric Conversions
Geometric Properties
Important Math Facts
Number Sense Vocab
Business Math
More...
Other Major Subjects
Science
Economics
History
Law
Performing-arts
Cooking
Logic & Reasoning
Trivia
Browse all subjects
Browse all tests
Most popular tests