Test your basic knowledge |

CISSP Security Architecture And Design

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. TCB contains The Security Kernel and all ______________.






2. When the RAM and secondary storage are combined the result is __________.






3. Developed after the Bell-LaPadula model. Its a state machine model and is very similar to the Bell-LaPadula Model.






4. Bell-LaPadula - ______________: This rule is based on named subjects and objects. It specifies that specific permissions allow a subject to pass on permissions to pass on permissions at its own discretion. These permissions are stored in an access ma






5. The total combination of protection mechanisms within a computer system






6. Audit data must be captured and protected to enforce accountability






7. The Physical memory address that the CPU uses






8. In which users are processing information at the same sensitivity level; thus - strict access control and auditing measures are not required. It would be a trusted envirnment with low security concerns.






9. Data in Cache can be accessed much more quickly than Data






10. Contains an Address of where the instruction and dara reside that need to be processed.






11. The Indexed memory addresses that software uses






12. Minimal Security






13. An organization within the National Security Agency (NSA) is responsible for Evaluating computer systems and products. The Trusted Product Evaluation program (TPEP) oversees the testing by approved entities of commercial products against a specific s






14. Which evaluation class of the Trusted Network Interpretation (TNI) offers security domains?






15. A type of memory used for High-speed writing and reading activities.






16. The Biba Model - ______________: A subject cannot request service (invoke) to subjects of higher integrity






17. What prevents a process from accessing another process' data?






18. If a system initializes in a secure state and all allowed state transitions are secure - the every subsequent state will be secure no matter what inputs occur.






19. Which computer design approaches is based on the fact that in earlier technologies - the instruction fetch was the longest part of the cycle






20. A is a form of EPROM - but its data storage can be erased and modified electrically by onboard programming circuitry and signals.






21. Mandatory access control is enfored by the use of security labels.






22. To ensure that the Trusted Computing Base is not tampered with during shipment or installation.






23. Includes the security kernel as well as other security-related system functions that are within the boundary of the trusted computing base. System elements that are outside of the security perimeter need not be trusted.






24. Which is an ISO standard product evaluation criteria that supersedes several different criteria






25. Based on a known address with an offset value applied.






26. What does the simple integrity axiom mean in the Biba model?






27. Trusted facility management is an assurance requirement only for ________________.






28. What does the * (star) property mean in the Bell-LaPadula model?






29. What model use an access control triples and requires that the system maintain separation of duty ?






30. The Biba Model - _____________: A subject cannot read data from a lower Integrity level " No Read Down"






31. A subject at a given clearance may not read an object at a higher classification






32. A portion of a process. When the thread is generated - it shares the same domain(resources) as its process.






33. The Policy must be explicit and well defined and enforced by the mechanisms within the system






34. Simpler instructions that require fewer clock cycles to execute.






35. In ______________ the subject must have: Need to Know for ALL the information contained within the system.






36. System Architecture that separates system functionality into Hierarchical layers






37. Components considered as part of the Trusted Computing Base (from the Orange Book) are?






38. Based on the Bell-LaPadula Security model - and evidence of reference monitor enforcement must be available.






39. A process that resides in a privileged domain to be able to execute its instructions and process its data with the assurance that programs in a different domain can NOT negatively affect its environment.






40. Mediates all access and Functions between subjects and objects.






41. The Bell-LaPadula model Subjects and Objects are ___________.






42. Mandatory Protection






43. The total(sum)combination of protection mechanisms within a computer system. The TCB includes hardware - software - and firmware.






44. Which describe a condition when RAM and Secondary storage are used together?






45. In access control terms - the word "dominate" refers to ___________.






46. Software - hardware and firmware must be able to be tested individually to ensure that each enforces the security policy in an effective manner throughout their lifetimes.






47. Used by Windows systems to reserve the "Swap Space"






48. The combination of RAM - Cache and the Processor Registers






49. This type of environment is highly secured environment that processes very sensitive information. It requires systems that are highly resistant to penetration.






50. Which Orange Book evaluation level is described as "Discretionary Security Protection"?