Test your basic knowledge |

CISSP Security Architecture And Design

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Which increases the performance in a computer by overlapping the steps of different instructions?






2. Ensuring thta information does not flow from a higher security lever to a lower level in the Bell-LaPadula Model is referred to as ___________________ - which would take place through a "write down" operation. (An actual compromise occurs if and when






3. The combination of RAM - Cache and the Processor Registers






4. Which Orange Book evaluation level is described as "Verified Design"?






5. Discretionary protection






6. Bell-LaPadula Model - ______________: A subject that has read and write capabilities can only perform those functions at the same security level - nothing higher and nothing lower.






7. Happen because input data is not checked for appropriate length at time of input






8. Which is an ISO standard product evaluation criteria that supersedes several different criteria






9. Access control labels must be associated properly with objects.






10. Discretionary access control is based on individuals and/or groups. It requires a separation of users and information and identification and authentication of individual entities






11. Verification Protection






12. Levels of Security and Levels of Trust Lower Letters of the alphabet represent higher levels of security. Higher numbers indicate a greater level of trust.






13. In which users are processing information at the same sensitivity level; thus - strict access control and auditing measures are not required. It would be a trusted envirnment with low security concerns.






14. When the RAM and secondary storage are combined the result is __________.






15. Based on a known address with an offset value applied.






16. Which TCSEC level first addresses object reuse?






17. Bell-LaPadula - ______________: This rule is based on named subjects and objects. It specifies that specific permissions allow a subject to pass on permissions to pass on permissions at its own discretion. These permissions are stored in an access ma






18. The subject must have Need to Know for ONLY the information they are trying to access.






19. The Bell-LaPadula model Subjects and Objects are ___________.






20. In Access Control terms it means to be higher than or equal to. In the Bell-Lapadula Model - this is refered to as the dominance relation - which is the relationship of the subject's clearance to the object's classification

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


21. Requires more stringent authentication mechanisms and well-defined interfaces among layers.






22. Which would be designated as objects on a MAC system?






23. Bell-LaPadula Model -______________: A subject in a given security level can NOT WRITE information to a LOWER security level.






24. What is called the formal acceptance of the adequacy of a system's overall security by management?






25. The group that oversees the processes of evaluation within TCSEC is?






26. B3 is also called "Security Domains" and imposes more granularity in each protection mechanism.






27. What does the * (star) property mean in the Bell-LaPadula model?






28. The reference monitor - in accordance with the security policy - ____________ that are made in the access control database.






29. The object reuse concept must also be invoked - meaning that any medium holding data must not contain any remnants of information after it is released for another subject to use. All data must be efficiently erased once the subject is doen with the m






30. Individual subjects must be uniquely identified.






31. The first mathematical model of a multi-level security policy used to define the concept of a secure state - the modes of access - and rules for granting access?






32. THE (Technische Hogeschool Eindhoven) - VAX/VMS - Multics and Unix . THE and Multics are no longer in use






33. Includes the security kernel as well as other security-related system functions that are within the boundary of the trusted computing base. System elements that are outside of the security perimeter need not be trusted.






34. The Biba Model adresses _____________________.






35. Security is made up of: System administration - ________ - installation and configuration mechanisms within the environment - and other security issues.






36. In the Bell-LaPadula Model the Object's Label contains ___________________.






37. The Reserved hard drive space used to to extend RAM capabilites.






38. Minimal Security






39. A process that resides in a privileged domain to be able to execute its instructions and process its data with the assurance that programs in a different domain can NOT negatively affect its environment.






40. What model use an access control triples and requires that the system maintain separation of duty ?






41. Data in Cache can be accessed much more quickly than Data






42. Trusted facility management is an assurance requirement only for ________________.






43. Bell-LaPadula Model - ____________ : A subject at a given security level can NOT READ data that reside at a higher security level.






44. The _________________ specified in the Orange Book are: System architecture - System integrity - Covert channel analysis - Trusted facility management and Trusted recovery.






45. What Orange Book security rating is reserved for systems that have been evaluated but fail to meet the criteria and requirements of the higher divisions?






46. What does the simple security (ss) property mean in the Bell-LaPadula model?






47. Users need to be Identified individually to provide more precise acces control and auditing functionality.






48. What prevents a process from accessing another process' data?






49. Which addresses a portion of the primary memory by specifying the actual address of the memory location?






50. Which uses Protection Profiles and Security Targets?







Sorry!:) No result found.

Can you answer 50 questions in 15 minutes?


Let me suggest you:

Browse all subjects

Browse all tests

Most popular tests



Major Subjects

Tests & Exams


AP
CLEP
DSST
GRE
SAT
GMAT

Browse all subjects

Browse all tests

Most popular tests