Test your basic knowledge |

CISSP Security Architecture And Design

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Succesfully Evaluated products are placed on?






2. An imaginary line that separates the trusted components of the TCB from those elements that are NOT trusted?






3. The Physical memory address that the CPU uses






4. TCSEC provides a means to evaluate ______________________.






5. The hardware - firmware and software elements of a trusted computing base that implement the reference monitor concept.






6. The biggest difference between System High Security Mode and Dedicated Security Mode is: ______.






7. When the RAM and secondary storage are combined the result is __________.






8. Remaining parts of the operating system






9. In ______________ the subject must have: Need to Know for ALL the information contained within the system.






10. Which integrity model defines a constrained data item - an integrity verification procedure and a transformation procedure?






11. The security kernel is the mechanism that _____________ of the reference monitor concept.






12. Used by Windows systems to reserve the "Swap Space"






13. Which is an ISO standard product evaluation criteria that supersedes several different criteria






14. To ensure that the Trusted Computing Base is not tampered with during shipment or installation.






15. The Indexed memory addresses that software uses






16. Intended for environments that require systems to handle classified data.






17. The assignment of a specific individual to administer the security-related functions of a system.






18. Has two individual assurace ratings. C1 and C2. The Higher the number of assurance rating the greater the protection






19. Contains the beginning address






20. System Architecture that separates system functionality into Hierarchical layers






21. Which increases the performance in a computer by overlapping the steps of different instructions?






22. For rhe type of environment that processes sensitive data that require a higher degree of security. It requires systems that are relatively resistant to peneration and compromise






23. The Red Book aka Trusted Network Interpretation (TNI) - provides _________________ for Trusted computer and communications network systems under the areas of assurance requirements






24. Can be erased - modified and upgraded.






25. In the Bell-LaPadula Model the Object's Label contains ___________________.






26. TCB contains The Security Kernel and all ______________.






27. This class ("Structured Protection") requires more stringent authentication mechanisms and well-defined interfaces between layers. Subjects and devices require labels and the system must not allow covert channels.






28. If an operating system permits executable objects to be used sequentially by multiple users without a refresh of the objects - what security problem is most likely to exist?






29. Requires more stringent authentication mechanisms and well-defined interfaces among layers.






30. Operating System Kernel






31. The subject must have Need to Know for ONLY the information they are trying to access.






32. The Reserved hard drive space used to to extend RAM capabilites.






33. The C2 evaluation class of the _________________ offers controlled access protection.






34. Execute one instruction at a time.






35. Which can be used as a covert channel?






36. When the address location that is specified in the program instruction contains the address of the final desired location.






37. Bell-LaPadula - ______________: This rule is based on named subjects and objects. It specifies that specific permissions allow a subject to pass on permissions to pass on permissions at its own discretion. These permissions are stored in an access ma






38. When a computer uses more than one CPU in parallel to execute instructions is known as?






39. A portion of a process. When the thread is generated - it shares the same domain(resources) as its process.






40. The Biba Model - _____________: A subject cannot read data from a lower Integrity level " No Read Down"






41. The reference monitor is an access control concept - Referring to ________________ that mediates all accesses to objects by subjects based on information in an access control database.






42. A nonvolatile storage media etc computer hard drive - floppy disks and CD-ROMs






43. Which Orange Book evaluation level is described as "Controlled Access Protection"? - This class requires a more granular method of providing access control. The system must enforce strict logon procedures and provide decision-making capabilites when






44. Mandatory Protection






45. The Orange book does NOT Cover ________________ - And Database management systems






46. The Security Model Incorporates the ____________ that should be enforced in the system.






47. Based on The Bell-LaPadula model - because it allows for multilevel security to be integrated into the code.






48. Which evaluation class of the Trusted Network Interpretation (TNI) offers security domains?






49. What does the simple integrity axiom mean in the Biba model?






50. A type of memory used for High-speed writing and reading activities.







Sorry!:) No result found.

Can you answer 50 questions in 15 minutes?


Let me suggest you:



Major Subjects



Tests & Exams


AP
CLEP
DSST
GRE
SAT
GMAT

Most popular tests