Test your basic knowledge |

CISSP Security Architecture And Design

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. The Biba Model - ______________: A subject cannot request service (invoke) to subjects of higher integrity






2. Minimal Security






3. The omission of networks and network components in the TCSEC was recognized and addressed in the "Trusted Network Interpretation of the TCSEC" otherwise known as ___________.






4. The Biba model (introduced in 1977) - The Sutherland model (published in 1986) - The Brewer-Nash model (published in 1989)






5. The TCB is the ________________ within a computer system that work together to enforce a security policy.






6. Audit data must be captured and protected to enforce accountability






7. When a computer spends more time moving data from one small portion of memory to another THAN Actually processing the data






8. In the Bell-LaPadula Model the Subject's Label contains ___________________.






9. For rhe type of environment that processes sensitive data that require a higher degree of security. It requires systems that are relatively resistant to peneration and compromise






10. The Bell-LaPadula Model is a _______________ that enforces Confidentiality aspect of access control. Formed by David Bell and Leonard LaPadula.






11. Intended for environments that require systems to handle classified data.






12. When a vendor submits a product for evaluation - it submits it to the ____________.






13. Has two individual assurace ratings. C1 and C2. The Higher the number of assurance rating the greater the protection






14. Bell-LaPadula model was proposed for enforcing access control in _____________________.






15. The Bell-LaPaula Model's main goal was to ___________________ in an unauthorized manner. (Developed by the US gov)






16. Access control labels must be associated properly with objects.






17. Execute one instruction at a time.






18. The Security Model Incorporates the ____________ that should be enforced in the system.






19. The first mathematical model of a multi-level security policy used to define the concept of a secure state - the modes of access - and rules for granting access?






20. Mandatory Access requires that _____________ be attached to all objects.






21. TCB contains The Security Kernel and all ______________.






22. As per FDA data should be ______________________________.






23. Which Orange Book evaluation level is described as "Discretionary Security Protection"?






24. Security is made up of: System administration - ________ - installation and configuration mechanisms within the environment - and other security issues.






25. Discretionary protection






26. Subjects and Objects cannot change their security levels once they have been instantiated (created)






27. The Orange Book describes four hierarchical levels to categorize security systems. Which levels require mandatory protection?






28. This class ("Structured Protection") requires more stringent authentication mechanisms and well-defined interfaces between layers. Subjects and devices require labels and the system must not allow covert channels.






29. The combination of RAM - Cache and the Processor Registers






30. To ensure that the Trusted Computing Base is not tampered with during shipment or installation.






31. Reference Monitor is responsible for ______________ it compares the security labels of a subject and an object






32. The Orange book requires protection against two_____________ - which are these Timing and Storage






33. Permits a database to have two records that are identical except for Their classifications






34. The Indexed memory addresses that software uses






35. In both the Bell-LaPadula and Biba Models if the word "* or Star is used - _______________.






36. Which increases the performance in a computer by overlapping the steps of different instructions?






37. The security kernel is the mechanism that _____________ of the reference monitor concept.






38. The _________________ specified in the Orange Book are: System architecture - System integrity - Covert channel analysis - Trusted facility management and Trusted recovery.






39. Another word for Primary storage and distinguishes physical memory from virtual memory.






40. In both the Bell-LaPadula and Biba Models if the word "Simple is used ______________.






41. B1 is also called "Labeled Security" and each data object must have a classification label and each subject a clearance label. On each access attempt - the classification and clearance are checked to verify that the access is permissible.






42. What is defined as the hardware - firmware and software elements of a trusted computing base that implement the reference monitor concept?






43. Bell-LaPadula Model -______________: A subject in a given security level can NOT WRITE information to a LOWER security level.






44. Which is a straightforward approach that provides access rights to subjects for objects?






45. Logical access control mechanisms are used to enforce authentication and the uniquenes of each individual's identification.






46. A Policy based control. All objects and systems have a sensitivity level assigned to them






47. Discretionary access control is based on individuals and/or groups. It requires a separation of users and information and identification and authentication of individual entities






48. Remaining parts of the operating system






49. The Orange book does NOT Cover ________________ - And Database management systems






50. In B1 the security policy is based on Informal statement and the design specifications are reviewed and verified where as in B2 the ___________________ - and the system design and implementation are subject to more thorough review and testing procedu