Test your basic knowledge |

CISSP Security Architecture And Design

Subjects : certifications, it-skills, cissp

Instructions:

Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can study here.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.

1. The Biba Model - ______________: A subject cannot request service (invoke) to subjects of higher integrity
A Limit Register (Memory Management)
Invocation Property
Direct Addressing
Accountability - Orange Book

2. Should always trace to individuals responsible for observing and recording the data
Attributable data
Simple Security Rule
Controlling unauthorized downgrading of information
International Standard 15408

3. Which TCSEC level first addresses object reuse?
B2
Orange Book B
C2
C2 - Controlled Access Protection

4. The Bell-LaPadula Model is a _______________.
Attributable data
The trustworthiness of an information system
Scalar processors
Subject to Object Model

5. Configuration management is also defined in the Orange Book BUT As a _____________________ and NOT an operational assurance requirement.
Access Matrix model
Orange Book C
Pipelining
Life Cycle Assurance Requirement

6. A ring protection system ________: User mode programs from direct access to peripherals and requires them to make use of services running at more privileged levels.
C1 - Discretionary Security Protection
Accreditation
Assigned labels
Prohibits

7. Includes the security kernel as well as other security-related system functions that are within the boundary of the trusted computing base. System elements that are outside of the security perimeter need not be trusted.
The security perimeter
Compare the security labels
The National Computer Security Center (NCSC)
A single classification and a Compartment Set

8. The type of environment that would require A1 systems is the most secure of secure environments. It deals with top-secret information and cannot adequately trust anyone using the systems without strict authentication - restrictions and auditing.
A1 - Rating
Bell-LaPadula Model
The "No write Down" Rule
Mandatory access control

9. All users have a clearance for and a formal need to know about - all data processed with the system.
Discretionary Security Property (ds-property)
C2 - Controlled Access Protection
Dedicated Security Mode
The National Computer Security Center (NCSC)

10. The biggest difference between System High Security Mode and Dedicated Security Mode is: ______.
Its Clearance Label (Top Secret - Secret - or Confidential)
Division C - Discretionary Protection
Security Policy is clearly defined and documented
Need-to-know

11. Which would be designated as objects on a MAC system?
TCB (Trusted Computing Base)
Files - directories and devices
The Red Book
NOT Integrity

12. Using TPs (Transformation Procedures) to modify CDIs (Constrained Data) items is refered to as Well-Formed transaction
Evaluated separately
Process isolation
Clark-Wilson Model
Implement software or systems in a production environment

13. Developed after the Bell-LaPadula model. Its a state machine model and is very similar to the Bell-LaPadula Model.
Files - directories and devices
C2 - Controlled Access Protection
The Biba Model
Be protected from modification

14. Which Orange Book evaluation level is described as "Controlled Access Protection"? - This class requires a more granular method of providing access control. The system must enforce strict logon procedures and provide decision-making capabilites when
C2
The security perimeter
Storage and timing
An abstract machine

15. Which uses Protection Profiles and Security Targets?
Trusted Products Evaluation Program (TPEP)
International Standard 15408
The Simple Security Property
C1 - Discretionary Security Protection

16. A domain of trust that shares a single security policy and single management
No read up
Division C - Discretionary Protection
A security domain
The Tranqulity principle (The Bell-LaPadula Model)

17. The Indexed memory addresses that software uses
Secondary Storage
The *-Property rule (Star property)
Logical addresses
Swap Space

18. When a computer uses more than one CPU in parallel to execute instructions is known as?
Multiprocessing
Electrically Erasable and Programmable Read-Only Memory (EEPROM)
Identification - Orange Book
B1 - Labeled Security rating

19. The Bell-LaPadula model Subjects and Objects are ___________.
Ring 3
Assigned labels
Life Cycle Assurance Requirement
Buffer overflows

20. In the Bell-LaPadula Model the Object's Label contains ___________________.
Security mechanisms and evalautes their effectivenes
Its classification label (Top Secret - Secret or confidential)
Real storage
The reference monitor

21. Documentation must be provided - including test - design - and specification document - user guides and manuals
B3 - Rating
Physical security
Documentation - Orange Book
Orange Book interpretations

22. This class ("Structured Protection") requires more stringent authentication mechanisms and well-defined interfaces between layers. Subjects and devices require labels and the system must not allow covert channels.
A security domain
Orange Book - B2
Trusted Distribution
Life Cycle Assurance Requirement

23. The process of Evaluating the security stance of the software or system against a selected set of standards or policies. This may precede accreditation but is not a required precursor.
Documentation - Orange Book
security protection mechanisms
Certification
Constrained

24. The subject must have Need to Know for ONLY the information they are trying to access.
First evaluation class
System High Security Mode
The TCSEC - Aka Orange Book
Discretionary Security Property (ds-property)

25. Audit data must be captured and protected to enforce accountability
Scalar processors
Prohibits
Accountability - Orange Book
Continuous protection - O/B

26. What is defined as the hardware - firmware and software elements of a trusted computing base that implement the reference monitor concept?
A security kernel
Protection Rings Support
Access control to the objects by the subjects
State machine model

27. The security mechanisms and the system as a whole must perform predictably and acceptably in different situations continuously.
Continuous protection - O/B
The Clark Wilson integrity model
Orange Book - D
System High Security Mode

28. This type of environment is highly secured environment that processes very sensitive information. It requires systems that are highly resistant to penetration.
Trusted Products Evaluation Program (TPEP)
Storage and timing
B3 - Rating
The Biba Model

29. A type of memory used for High-speed writing and reading activities.
Certification
Orange Book B
Cache Memory
C2 - Controlled Access Protection

30. Buffer overflows occurs when a program or process tries to store more data in a _____________ than it was intended to hold.
Logical addresses
attributability
First evaluation class
Buffer (temporary data storage area)

31. The C2 evaluation class of the _________________ offers controlled access protection.
Trusted Network Interpretation (TNI)
Pipelining
Physical security
Discretionary Security Property (ds-property)

32. When the address location that is specified in the program instruction contains the address of the final desired location.
Basic Security Theorem (used in computer science) definition
The Security Kernel
Direct Addressing
Indirect addressing

33. Access control labels must be associated properly with objects.
Process isolation
Its Clearance Label (Top Secret - Secret - or Confidential)
Labels - Orange Book
Indirect addressing

34. A Policy based control. All objects and systems have a sensitivity level assigned to them
First evaluation class
Mandatory Access Control (MAC)
Scalar processors
Multiprocessing

35. Applications and user activity
Ring 3
Multitasking
The Simple Security Property
TCB (Trusted Computing Base)

36. A portion of a process. When the thread is generated - it shares the same domain(resources) as its process.
Scalar processors
A Thread
Thrashing
TCB (Trusted Computing Base)

37. The Policy must be explicit and well defined and enforced by the mechanisms within the system
Electrically Erasable and Programmable Read-Only Memory (EEPROM)
Security Policy - Orange Book
A1
Reduced Instruction Set Computers (RISC)

38. Can be erased - modified and upgraded.
Erasable and Programmable Read-Only Memory (EPROM)
The Thread (memory Management)
Orange Book C
The Rule is talking about writing

39. What is called the formal acceptance of the adequacy of a system's overall security by management?
B2
The rule is talking about "Reading"
C2 - Controlled Access Protection
Accreditation

40. The object reuse concept must also be invoked - meaning that any medium holding data must not contain any remnants of information after it is released for another subject to use. All data must be efficiently erased once the subject is doen with the m
Multitasking
'Dominate'
Multiprocessing
C2 - Controlled Access Protection

41. n this class more granularity is provided in each protection mechanism - and the programming code that is not necessary to support the security policy is excluded.
B3 - Security Domains
Relative Addresses
D
Accreditation

42. Ensuring thta information does not flow from a higher security lever to a lower level in the Bell-LaPadula Model is referred to as ___________________ - which would take place through a "write down" operation. (An actual compromise occurs if and when
Controlling unauthorized downgrading of information
Swap Space
B3 - Security Domains
Simple Security Rule

43. In B2 Distinct address spaces must be provided to _________ - and a covert channel analysis is conducted. B2 adds assurance by adding requirements to the design of the system
Buffer (temporary data storage area)
Orange Book - B1
Swap Space
Isolate processes

44. Security Labels are not required until __________; thus C2 does not require security labels but B1 does
Reduced Instruction Set Computers (RISC)
Continuous protection - O/B
Security rating B
Accountability - Orange Book

45. A system uses the Reference Monitor to ___________________ of a subject and an object?
Thrashing
The Strong star property rule
Orange Book interpretations
Compare the security labels

46. In which users are processing information at the same sensitivity level; thus - strict access control and auditing measures are not required. It would be a trusted envirnment with low security concerns.
C1 - Discrection Security Protection is a type of environment
C2 - Controlled Access Protection
Compare the security labels
Files - directories and devices

47. The Orange Book describes four hierarchical levels to categorize security systems. Which levels require mandatory protection?
Security Policy - Orange Book
Buffer overflows
A and B
A security kernel

48. Best defined as a mode of system termination that automatically leaves system processes and components in a secure state when a failure occurs or is detected in the system?
Firmware
Physical security
Fail safe
C2 - Controlled Access Protection

49. What prevents a process from accessing another process' data?
B3 - Security Domains
Process isolation
The Thread (memory Management)
C2 - Controlled Access Protection

50. Which addresses a portion of the primary memory by specifying the actual address of the memory location?
A Base Register (Memory Management)
Primary storage
Division B - Mandatory Protection
Direct Addressing

Sorry!:) No result found.

Can you answer 50 questions in 15 minutes?

Major Subjects
Tests & Exams AP CLEP DSST GRE SAT GMAT	Certifications CISSP go to https://www.isc2.org/ PMP ITIL RHCE MCTS More...	IT Skills Android Programming Data Modeling Objective C Programming Basic Python Programming Adobe Illustrator More...	Business Skills Advertising Techniques Business Accounting Basics Business Strategy Human Resource Management Marketing Basics More...
Soft Skills Body Language People Skills Public Speaking Persuasion Job Hunting And Resumes More...	Vocabulary GRE Vocab SAT Vocab TOEFL Essential Vocab Basic English Words For All Global Words You Should Know Business English More...	Languages AP German Vocab AP Latin Vocab SAT Subject Test: French Italian Survival Norwegian Survival More...	Engineering Audio Engineering Computer Science Engineering Aerospace Engineering Chemical Engineering Structural Engineering More...
Health Sciences Basic Nursing Skills Health Science Language Fundamentals Veterinary Technology Medical Language Cardiology Clinical Surgery More...	English Grammar Fundamentals Literary And Rhetorical Vocab Elements Of Style Vocab Introduction To English Major Complete Advanced Sentences Literature Homonyms More...	Math Algebra Formulas Basic Arithmetic: Measurements Metric Conversions Geometric Properties Important Math Facts Number Sense Vocab Business Math More...	Other Major Subjects Science Economics History Law Performing-arts Cooking Logic & Reasoning Trivia

Test your basic knowledge |

CISSP Security Architecture And Design

Sorry!:) No result found.

Can you answer 50 questions in 15 minutes?

Let me suggest you:

Browse all subjects

Browse all tests

Most popular tests

Major Subjects

Tests & Exams

Certifications

IT Skills

Business Skills

Soft Skills

Vocabulary

Languages

Engineering

Health Sciences

English

Math

Other Major Subjects

Browse all subjects

Browse all tests

Most popular tests