SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
CISSP Security Architecture And Design
Start Test
Study First
Subjects
:
certifications
,
it-skills
,
cissp
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. The reference monitor - in accordance with the security policy - ____________ that are made in the access control database.
Controls the checks
Covert channels
A security domain
Pagefile.sys file
2. Mandatory access control is enfored by the use of security labels.
C1 - Discrection Security Protection is a type of environment
Division B - Mandatory Protection
Operational assurance requirements
Firmware
3. The Bell-LaPadula model Subjects and Objects are ___________.
All Mandatory Access Control (MAC) systems
Division C - Discretionary Protection
No read down
Assigned labels
4. The Biba Model - ______________: A subject cannot request service (invoke) to subjects of higher integrity
Electrically Erasable and Programmable Read-Only Memory (EEPROM)
Invocation Property
C1 - Discretionary Security Protection
No read up
5. Which Orange Book evaluation level is described as "Discretionary Security Protection"?
A security domain
C1
Secondary Storage
Invocation Property
6. The Security Model Incorporates the ____________ that should be enforced in the system.
Dedicated Security Mode
Absolute addresses
Security Policy
Direct Addressing
7. The group that oversees the processes of evaluation within TCSEC is?
Trusted Products Evaluation Program (TPEP)
Overt channel
Trusted Distribution
Dominate the object's sensitivity label
8. The total(sum)combination of protection mechanisms within a computer system. The TCB includes hardware - software - and firmware.
Swap Space
The Trusted Computing Base (TCB)
Documentation - Orange Book
Physical security
9. The object reuse concept must also be invoked - meaning that any medium holding data must not contain any remnants of information after it is released for another subject to use. All data must be efficiently erased once the subject is doen with the m
C2 - Controlled Access Protection
Polyinstantiation
Division B - Mandatory Protection
Secondary Storage
10. Discretionary protection
The security kernel
Orange Book C
Orange Book interpretations
Integrity
11. Best defined as a mode of system termination that automatically leaves system processes and components in a secure state when a failure occurs or is detected in the system?
Division D - Minimal Protection
Attributable data
Fail safe
Accountability - Orange Book
12. In an automated system ________________ could be achieved by: A computer system designed to identify individuals responsible for any input.
attributability
Firmware
B2 - Structured Protection
Indirect addressing
13. Commonly referred to as The Big Mess Because of its lack of structure. MS-DOS is an example of a monolithic operation system
The Monolithic Operation system Architecture
The National Computer Security Center (NCSC)
Virtual Memory
The Strong star property rule
14. Individual subjects must be uniquely identified.
Integrity
C2 - Controlled Access Protection
Identification - Orange Book
The "No read Up" rule
15. The assignment of a specific individual to administer the security-related functions of a system.
Trusted facility management
Isolate processes
Pagefile.sys file
Orange Book - B1
16. In B2 Subjects and devices requre labels and the system must NOT allow ________. No Trapdoors exists.
Covert channels
The rule is talking about "Reading"
A Thread
A1 - Rating
17. When the address location that is specified in the program instruction contains the address of the final desired location.
Trusted facility management
Pipelining
Indirect addressing
D
18. What does the * (star) property mean in the Bell-LaPadula model?
No write down
Trusted facility management
Access Matrix model
C1 - Discrection Security Protection is a type of environment
19. Includes the security kernel as well as other security-related system functions that are within the boundary of the trusted computing base. System elements that are outside of the security perimeter need not be trusted.
The security perimeter
B3
B1 - Labeled Security
The Common Criteria
20. In the Bell-LaPadula Model the Object's Label contains ___________________.
Its classification label (Top Secret - Secret or confidential)
Direct addressing
C1 - Discretionary Security Protection
Clark-Wilson
21. Based on the Bell-LaPadula Security model - and evidence of reference monitor enforcement must be available.
Division B - Mandatory Protection Architecture
C2 - Controlled Access Protection
Attributable data
Basic Security Theorem (used in computer science) definition
22. In B2 Distinct address spaces must be provided to _________ - and a covert channel analysis is conducted. B2 adds assurance by adding requirements to the design of the system
Multiprocessing
C2
Isolate processes
Electrically Erasable and Programmable Read-Only Memory (EEPROM)
23. What is called the formal acceptance of the adequacy of a system's overall security by management?
Mandatory access control
The TCSEC - Aka Orange Book
C2 - Controlled Access Protection
Accreditation
24. Requires more stringent authentication mechanisms and well-defined interfaces among layers.
B2 - Structured Protection
B3 - Rating
The security perimeter
Invocation Property
25. The Biba Model - _____________: A subject cannot read data from a lower Integrity level " No Read Down"
Trusted Products Evaluation Program (TPEP)
Simple Integrity Axiom
Orange Book ratings
Division B - Mandatory Protection
26. A Policy based control. All objects and systems have a sensitivity level assigned to them
Mandatory Access Control (MAC)
Overt channel
Trusted Network Interpretation (TNI)
Controls the checks
27. When the contents of the address defined in the program's instruction is added to that of an index register.
Indexed addressing
Accreditation
Division B - Mandatory Protection Architecture
Orange Book - B3
28. In Access Control terms it means to be higher than or equal to. In the Bell-Lapadula Model - this is refered to as the dominance relation - which is the relationship of the subject's clearance to the object's classification
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
29. Accreditation is also defined as an ____________________ by a designated authority that an information system is approved to operate in a particular security configuration with a prescribed set of safeguards
Reduced Instruction Set Computers (RISC)
Trusted facility management
The trustworthiness of an information system
Administrative declaration
30. The security kernel is the mechanism that _____________ of the reference monitor concept.
Enforces the rules
Pagefile.sys file
C2
Access Matrix model
31. The Security Kernel is the Core of The TCB and is the _____________ to building trusted computing systems.
In C2 - Controlled Access Protection environment
Firmware
B2 rating
Most commonly used approach
32. A form of ROM(Read-Only Memory) that can be modified after it has been manufactured. It can only be programmed only one time.
The Simple Security Property
Implement software or systems in a production environment
Subject to Object Model
Programmable Read-Only Memory (PROM)
33. In which users are processing information at the same sensitivity level; thus - strict access control and auditing measures are not required. It would be a trusted envirnment with low security concerns.
Dedicated Security Mode
Its Clearance Label (Top Secret - Secret - or Confidential)
C1 - Discrection Security Protection is a type of environment
Accreditation
34. Subjects and Objects cannot change their security levels once they have been instantiated (created)
Firmware
Trusted Network Interpretation (TNI)
The Tranqulity principle (The Bell-LaPadula Model)
First evaluation class
35. Which can be used as a covert channel?
Storage and timing
The National Computer Security Center (NCSC)
International Standard 15408
Direct addressing
36. Succesfully Evaluated products are placed on?
The Evaluated Products List (EPL) with their corresponding rating
Thrashing
Orange Book - D
NOT Integrity
37. The Bell-LaPadula Model is a _______________ that enforces Confidentiality aspect of access control. Formed by David Bell and Leonard LaPadula.
State machine model
Primary storage
The *-Property rule (Star property)
No write down
38. Which is an ISO standard product evaluation criteria that supersedes several different criteria
No read up
The Common Criteria
Indirect addressing
B3
39. In access control terms - the word "dominate" refers to ___________.
Higher or equal to access class
Disclosure of residual data
B1
Bell-LaPadula Model
40. Based on The Bell-LaPadula model - because it allows for multilevel security to be integrated into the code.
Virtual storage
B3
Highly secure systems (B2 - B3 and A1)
All Mandatory Access Control (MAC) systems
41. Simpler instructions that require fewer clock cycles to execute.
Reduced Instruction Set Computers (RISC)
Security mechanisms and evalautes their effectivenes
Identification - Orange Book
Types of covert channels
42. Audit data must be captured and protected to enforce accountability
The National Computer Security Center (NCSC)
Storage and timing
Assigned labels
Accountability - Orange Book
43. The Simple Security rule is refered to as______________.
Swap Space
Trusted Distribution
The "No read Up" rule
Access Matrix model
44. Security Policies that prevent information from flowing from a higher security level to a lower security level are called ____________.
The Integrity of data within applications
Multilevel Security Policies
Orange Book A
Indirect addressing
45. When a computer uses more than one CPU in parallel to execute instructions is known as?
Multiprocessing
TCB (Trusted Computing Base)
D
Be protected from modification
46. B1 is the ___________________ of the Trusted Network Interpretation (TNI) or TCSEC that offers labeled security protection.
First evaluation class
Orange Book - B1
The security perimeter
Relative Addresses
47. An imaginary line that separates the trusted components of the TCB from those elements that are NOT trusted?
The security perimeter
Networks and Communications
The Security Kernel
Covert channels
48. Security is made up of: System administration - ________ - installation and configuration mechanisms within the environment - and other security issues.
Physical security
First evaluation class
Simple Security Rule
Mandatory Access Control (MAC)
49. This type of environment is highly secured environment that processes very sensitive information. It requires systems that are highly resistant to penetration.
B3 - Rating
Life-cycle assurance - O/B
C2 - Controlled Access Protection
Firmware
50. Contains the beginning address
A Base Register (Memory Management)
No read down
C1
Ring 3
