Test your basic knowledge |

CISSP Security Architecture And Design

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Which can be used as a covert channel?






2. The Physical memory address that the CPU uses






3. Which integrity model defines a constrained data item - an integrity verification procedure and a transformation procedure?






4. Which describe a condition when RAM and Secondary storage are used together?






5. A system uses the Reference Monitor to ___________________ of a subject and an object?






6. What access control technique is also known as multilevel security?






7. The Indexed memory addresses that software uses






8. In an automated system ________________ could be achieved by: A computer system designed to identify individuals responsible for any input.






9. Bell-LaPadula - ______________: This rule is based on named subjects and objects. It specifies that specific permissions allow a subject to pass on permissions to pass on permissions at its own discretion. These permissions are stored in an access ma






10. In B1 the security policy is based on Informal statement and the design specifications are reviewed and verified where as in B2 the ___________________ - and the system design and implementation are subject to more thorough review and testing procedu






11. Which increases the performance in a computer by overlapping the steps of different instructions?






12. Includes the security kernel as well as other security-related system functions that are within the boundary of the trusted computing base. System elements that are outside of the security perimeter need not be trusted.






13. Minimal Security






14. A channel within a computer system or network that is designed for the authorized transfer of information is identified as a(n)?






15. The Orange Book describes four hierarchical levels to categorize security systems. Which levels require mandatory protection?






16. The Bell-LaPaula Model's main goal was to ___________________ in an unauthorized manner. (Developed by the US gov)






17. The total(sum)combination of protection mechanisms within a computer system. The TCB includes hardware - software - and firmware.






18. When a computer uses more than one CPU in parallel to execute instructions is known as?






19. The Security Kernel is the Core of The TCB and is the _____________ to building trusted computing systems.






20. The object reuse concept must also be invoked - meaning that any medium holding data must not contain any remnants of information after it is released for another subject to use. All data must be efficiently erased once the subject is doen with the m






21. Mediates all access and Functions between subjects and objects.






22. Based on a known address with an offset value applied.






23. Which Orange Book evaluation level is described as "Discretionary Security Protection"?






24. When the RAM and secondary storage are combined the result is __________.






25. The Orange book requires protection against two_____________ - which are these Timing and Storage






26. As per FDA data should be ______________________________.






27. Based on the Bell-LaPadula Security model - and evidence of reference monitor enforcement must be available.






28. Involves sharing the processor amoung all ready processes






29. A form of ROM(Read-Only Memory) that can be modified after it has been manufactured. It can only be programmed only one time.






30. The reference monitor - in accordance with the security policy - ____________ that are made in the access control database.






31. Software - hardware and firmware must be able to be tested individually to ensure that each enforces the security policy in an effective manner throughout their lifetimes.






32. When a computer spends more time moving data from one small portion of memory to another THAN Actually processing the data






33. Operating System Kernel






34. The TCB is the ________________ within a computer system that work together to enforce a security policy.






35. The Bell-LaPadula Model is a _______________ that enforces Confidentiality aspect of access control. Formed by David Bell and Leonard LaPadula.






36. What is called the formal acceptance of the adequacy of a system's overall security by management?






37. Intended for environments that require systems to handle classified data.






38. Can be erased - modified and upgraded.






39. In the Orange Book - functionality and assurance are NOT _____________ as they are in the ITSEC and the Common Criteria.






40. The Biba model (introduced in 1977) - The Sutherland model (published in 1986) - The Brewer-Nash model (published in 1989)






41. The reserved hard drive space used to Extend RAM capabilities. Windows system use the pagefile.sys file to reserve this space






42. To ensure that the Trusted Computing Base is not tampered with during shipment or installation.






43. The _________________ specified in the Orange Book are: System architecture - System integrity - Covert channel analysis - Trusted facility management and Trusted recovery.






44. Which computer design approaches is based on the fact that in earlier technologies - the instruction fetch was the longest part of the cycle






45. Which Orange Book evaluation level is described as "Verified Design"?






46. The reference monitor is an access control concept - Referring to ________________ that mediates all accesses to objects by subjects based on information in an access control database.






47. Applications and user activity






48. I/O drivers and utilities






49. Based on The Bell-LaPadula model - because it allows for multilevel security to be integrated into the code.






50. A ring protection system ________: User mode programs from direct access to peripherals and requires them to make use of services running at more privileged levels.