Test your basic knowledge |

CISSP Security Architecture And Design

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Ssoftware that is stored within ROM (Read-Only Memory) - (ROM is nonvolatile)






2. Individual subjects must be uniquely identified.






3. When a vendor submits a product for evaluation - it submits it to the ____________.






4. Best defined as a mode of system termination that automatically leaves system processes and components in a secure state when a failure occurs or is detected in the system?






5. In an automated system ________________ could be achieved by: A computer system designed to identify individuals responsible for any input.






6. Commonly referred to as The Big Mess Because of its lack of structure. MS-DOS is an example of a monolithic operation system






7. A channel within a computer system or network that is designed for the authorized transfer of information is identified as a(n)?






8. Configuration management is also defined in the Orange Book BUT As a _____________________ and NOT an operational assurance requirement.






9. Succesfully Evaluated products are placed on?






10. Logical access control mechanisms are used to enforce authentication and the uniquenes of each individual's identification.






11. The Bell-LaPadula Model is a _______________.






12. The Security Model Incorporates the ____________ that should be enforced in the system.






13. Bell-LaPadula model was proposed for enforcing access control in _____________________.






14. I/O drivers and utilities






15. A1 is also called "Verified Design" and requires formal verification of the design and specifications.






16. The reserved hard drive space used to Extend RAM capabilities. Windows system use the pagefile.sys file to reserve this space






17. The total combination of protection mechanisms within a computer system






18. In B2 Distinct address spaces must be provided to _________ - and a covert channel analysis is conducted. B2 adds assurance by adding requirements to the design of the system






19. Discretionary access control is based on individuals and/or groups. It requires a separation of users and information and identification and authentication of individual entities






20. An abstract machine which must mediate all access to subjects to objects - be protected from modification - be verifiable as correct - and is always invoked






21. Execute one instruction at a time.






22. B1 is the ___________________ of the Trusted Network Interpretation (TNI) or TCSEC that offers labeled security protection.






23. TCSEC provides a means to evaluate ______________________.






24. Subjects and Objects cannot change their security levels once they have been instantiated (created)






25. When a computer spends more time moving data from one small portion of memory to another THAN Actually processing the data






26. The biggest difference between System High Security Mode and Dedicated Security Mode is: ______.






27. Security Labels are not required until __________; thus C2 does not require security labels but B1 does






28. Audit data must be captured and protected to enforce accountability






29. If an operating system permits executable objects to be used sequentially by multiple users without a refresh of the objects - what security problem is most likely to exist?






30. Based on The Bell-LaPadula model - because it allows for multilevel security to be integrated into the code.






31. In the Bell-LaPadula Model the Subject's Label contains ___________________.






32. An organization within the National Security Agency (NSA) is responsible for Evaluating computer systems and products. The Trusted Product Evaluation program (TPEP) oversees the testing by approved entities of commercial products against a specific s






33. There is only only one class in Division D. Reserved for systems that have been evaluated but fail to meet the criteria and requirements of the higher divisions.






34. The process of Evaluating the security stance of the software or system against a selected set of standards or policies. This may precede accreditation but is not a required precursor.






35. The Orange book requires protection against two_____________ - which are these Timing and Storage






36. Which evaluation class of the Trusted Network Interpretation (TNI) offers security domains?






37. Mandatory access control is enfored by the use of security labels.






38. The security mechanisms and the system as a whole must perform predictably and acceptably in different situations continuously.






39. The security kernel is the mechanism that _____________ of the reference monitor concept.






40. Which TCSEC level first addresses object reuse?






41. Applications and user activity






42. Which addresses a portion of the primary memory by specifying the actual address of the memory location?






43. Which in the Orange Book ratings represents the highest level of trust?






44. Mediates all access and Functions between subjects and objects.






45. A logical form of separation used by secure computing systems - Processes are _____________ so that each cannot access objects outside its permitted domain






46. Each data object must contain a classification label and each subject must have a clearance label.






47. The Orange Book describes four hierarchical levels to categorize security systems. Which levels require mandatory protection?






48. The Red Book aka Trusted Network Interpretation (TNI) - provides _________________ for Trusted computer and communications network systems under the areas of assurance requirements






49. All users have a clearance for and a formal need to know about - all data processed with the system.






50. In B2 Subjects and devices requre labels and the system must NOT allow ________. No Trapdoors exists.







Sorry!:) No result found.

Can you answer 50 questions in 15 minutes?


Let me suggest you:

Browse all subjects

Browse all tests

Most popular tests



Major Subjects

Tests & Exams


AP
CLEP
DSST
GRE
SAT
GMAT

Browse all subjects

Browse all tests

Most popular tests