Test your basic knowledge |

CISSP Security Architecture And Design

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Which in the Orange Book ratings represents the highest level of trust?






2. The Red Book aka Trusted Network Interpretation (TNI) - provides _________________ for Trusted computer and communications network systems under the areas of assurance requirements






3. Contains the ending address






4. Commonly referred to as The Big Mess Because of its lack of structure. MS-DOS is an example of a monolithic operation system






5. The Security Model Incorporates the ____________ that should be enforced in the system.






6. The assignment of a specific individual to administer the security-related functions of a system.






7. When a portion of primary memory is accessed by specifying the actual address of the memory location






8. TCSEC addresses Confidentiality - but _____________ . The TCSEC focuses mainly on one attribute of Security Confidentiality.






9. Which integrity model defines a constrained data item - an integrity verification procedure and a transformation procedure?






10. Bell-LaPadula model was proposed for enforcing access control in _____________________.






11. Which Orange Book evaluation level is described as "Discretionary Security Protection"?






12. Users are trusted but a certain level of accountability is required. C2 over is seen as the most reasonable class for commmercial applications - but the level of protection is still relatively weak.






13. Reference Monitor is responsible for ______________ it compares the security labels of a subject and an object






14. Bell-LaPadula Model - ______________: A subject that has read and write capabilities can only perform those functions at the same security level - nothing higher and nothing lower.






15. Ssoftware that is stored within ROM (Read-Only Memory) - (ROM is nonvolatile)






16. Documentation must be provided - including test - design - and specification document - user guides and manuals






17. What is defined as the hardware - firmware and software elements of a trusted computing base that implement the reference monitor concept?






18. Which describe a condition when RAM and Secondary storage are used together?






19. Security is made up of: System administration - ________ - installation and configuration mechanisms within the environment - and other security issues.






20. The C2 evaluation class of the _________________ offers controlled access protection.






21. Subjects and Objects cannot change their security levels once they have been instantiated (created)






22. The TCB is the ________________ within a computer system that work together to enforce a security policy.






23. Succesfully Evaluated products are placed on?






24. Each data object must contain a classification label and each subject must have a clearance label.






25. When a vendor submits a product for evaluation - it submits it to the ____________.






26. What access control technique is also known as multilevel security?






27. A is a form of EPROM - but its data storage can be erased and modified electrically by onboard programming circuitry and signals.






28. According to the Orange Book - which security level is the first to require a system to protect against covert timing channels?






29. B1 is also called "Labeled Security" and each data object must have a classification label and each subject a clearance label. On each access attempt - the classification and clearance are checked to verify that the access is permissible.






30. In which users are processing information at the same sensitivity level; thus - strict access control and auditing measures are not required. It would be a trusted envirnment with low security concerns.






31. Which can be used as a covert channel?






32. Users need to be Identified individually to provide more precise acces control and auditing functionality.






33. When a computer spends more time moving data from one small portion of memory to another THAN Actually processing the data






34. This class ("Structured Protection") requires more stringent authentication mechanisms and well-defined interfaces between layers. Subjects and devices require labels and the system must not allow covert channels.






35. Levels of Security and Levels of Trust Lower Letters of the alphabet represent higher levels of security. Higher numbers indicate a greater level of trust.






36. Which TCSEC level first addresses object reuse?






37. What prevents a process from accessing another process' data?






38. The security kernel is the mechanism that _____________ of the reference monitor concept.






39. The group that oversees the processes of evaluation within TCSEC is?






40. What Orange Book security rating is reserved for systems that have been evaluated but fail to meet the criteria and requirements of the higher divisions?






41. Involves sharing the processor amoung all ready processes






42. Which evaluation class of the Trusted Network Interpretation (TNI) offers security domains?






43. The Orange book requires protection against two_____________ - which are these Timing and Storage






44. Ensuring thta information does not flow from a higher security lever to a lower level in the Bell-LaPadula Model is referred to as ___________________ - which would take place through a "write down" operation. (An actual compromise occurs if and when






45. When the address location that is specified in the program instruction contains the address of the final desired location.






46. The object reuse concept must also be invoked - meaning that any medium holding data must not contain any remnants of information after it is released for another subject to use. All data must be efficiently erased once the subject is doen with the m






47. What does the simple integrity axiom mean in the Biba model?






48. The Security Kernel is the Core of The TCB and is the _____________ to building trusted computing systems.






49. A system uses the Reference Monitor to ___________________ of a subject and an object?






50. Bell-LaPadula Model -______________: A subject in a given security level can NOT WRITE information to a LOWER security level.