Test your basic knowledge |

CISSP Security Architecture And Design

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. The Biba Model - ______________: A subject cannot request service (invoke) to subjects of higher integrity






2. Should always trace to individuals responsible for observing and recording the data






3. Which TCSEC level first addresses object reuse?






4. The Bell-LaPadula Model is a _______________.






5. Configuration management is also defined in the Orange Book BUT As a _____________________ and NOT an operational assurance requirement.






6. A ring protection system ________: User mode programs from direct access to peripherals and requires them to make use of services running at more privileged levels.






7. Includes the security kernel as well as other security-related system functions that are within the boundary of the trusted computing base. System elements that are outside of the security perimeter need not be trusted.






8. The type of environment that would require A1 systems is the most secure of secure environments. It deals with top-secret information and cannot adequately trust anyone using the systems without strict authentication - restrictions and auditing.






9. All users have a clearance for and a formal need to know about - all data processed with the system.






10. The biggest difference between System High Security Mode and Dedicated Security Mode is: ______.






11. Which would be designated as objects on a MAC system?






12. Using TPs (Transformation Procedures) to modify CDIs (Constrained Data) items is refered to as Well-Formed transaction






13. Developed after the Bell-LaPadula model. Its a state machine model and is very similar to the Bell-LaPadula Model.






14. Which Orange Book evaluation level is described as "Controlled Access Protection"? - This class requires a more granular method of providing access control. The system must enforce strict logon procedures and provide decision-making capabilites when






15. Which uses Protection Profiles and Security Targets?






16. A domain of trust that shares a single security policy and single management






17. The Indexed memory addresses that software uses






18. When a computer uses more than one CPU in parallel to execute instructions is known as?






19. The Bell-LaPadula model Subjects and Objects are ___________.






20. In the Bell-LaPadula Model the Object's Label contains ___________________.






21. Documentation must be provided - including test - design - and specification document - user guides and manuals






22. This class ("Structured Protection") requires more stringent authentication mechanisms and well-defined interfaces between layers. Subjects and devices require labels and the system must not allow covert channels.






23. The process of Evaluating the security stance of the software or system against a selected set of standards or policies. This may precede accreditation but is not a required precursor.






24. The subject must have Need to Know for ONLY the information they are trying to access.






25. Audit data must be captured and protected to enforce accountability






26. What is defined as the hardware - firmware and software elements of a trusted computing base that implement the reference monitor concept?






27. The security mechanisms and the system as a whole must perform predictably and acceptably in different situations continuously.






28. This type of environment is highly secured environment that processes very sensitive information. It requires systems that are highly resistant to penetration.






29. A type of memory used for High-speed writing and reading activities.






30. Buffer overflows occurs when a program or process tries to store more data in a _____________ than it was intended to hold.






31. The C2 evaluation class of the _________________ offers controlled access protection.






32. When the address location that is specified in the program instruction contains the address of the final desired location.






33. Access control labels must be associated properly with objects.






34. A Policy based control. All objects and systems have a sensitivity level assigned to them






35. Applications and user activity






36. A portion of a process. When the thread is generated - it shares the same domain(resources) as its process.






37. The Policy must be explicit and well defined and enforced by the mechanisms within the system






38. Can be erased - modified and upgraded.






39. What is called the formal acceptance of the adequacy of a system's overall security by management?






40. The object reuse concept must also be invoked - meaning that any medium holding data must not contain any remnants of information after it is released for another subject to use. All data must be efficiently erased once the subject is doen with the m






41. n this class more granularity is provided in each protection mechanism - and the programming code that is not necessary to support the security policy is excluded.






42. Ensuring thta information does not flow from a higher security lever to a lower level in the Bell-LaPadula Model is referred to as ___________________ - which would take place through a "write down" operation. (An actual compromise occurs if and when






43. In B2 Distinct address spaces must be provided to _________ - and a covert channel analysis is conducted. B2 adds assurance by adding requirements to the design of the system






44. Security Labels are not required until __________; thus C2 does not require security labels but B1 does






45. A system uses the Reference Monitor to ___________________ of a subject and an object?






46. In which users are processing information at the same sensitivity level; thus - strict access control and auditing measures are not required. It would be a trusted envirnment with low security concerns.






47. The Orange Book describes four hierarchical levels to categorize security systems. Which levels require mandatory protection?






48. Best defined as a mode of system termination that automatically leaves system processes and components in a secure state when a failure occurs or is detected in the system?






49. What prevents a process from accessing another process' data?






50. Which addresses a portion of the primary memory by specifying the actual address of the memory location?







Sorry!:) No result found.

Can you answer 50 questions in 15 minutes?


Let me suggest you:



Major Subjects



Tests & Exams


AP
CLEP
DSST
GRE
SAT
GMAT

Most popular tests