Test your basic knowledge |

CISSP Security Architecture And Design

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. In which users are processing information at the same sensitivity level; thus - strict access control and auditing measures are not required. It would be a trusted envirnment with low security concerns.






2. n this class more granularity is provided in each protection mechanism - and the programming code that is not necessary to support the security policy is excluded.






3. Which integrity model defines a constrained data item - an integrity verification procedure and a transformation procedure?






4. A1 is also called "Verified Design" and requires formal verification of the design and specifications.






5. The Bell-LaPadula Model is a _______________.






6. Documentation must be provided - including test - design - and specification document - user guides and manuals






7. A Policy based control. All objects and systems have a sensitivity level assigned to them






8. A system uses the Reference Monitor to ___________________ of a subject and an object?






9. Bell-LaPadula Model -______________: A subject in a given security level can NOT WRITE information to a LOWER security level.






10. In an automated system ________________ could be achieved by: A computer system designed to identify individuals responsible for any input.






11. A domain of trust that shares a single security policy and single management






12. Discretionary access control is based on individuals and/or groups. It requires a separation of users and information and identification and authentication of individual entities






13. For rhe type of environment that processes sensitive data that require a higher degree of security. It requires systems that are relatively resistant to peneration and compromise






14. What is called the formal acceptance of the adequacy of a system's overall security by management?






15. What is defined as the hardware - firmware and software elements of a trusted computing base that implement the reference monitor concept?






16. For a subject to have read access to an object in a Multi-Level Security Policy - it is necessary that the subject's sensitivity label must ____________________.

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


17. In the Bell-LaPadula Model the Subject's Label contains ___________________.






18. The C2 evaluation class of the _________________ offers controlled access protection.






19. In B2 Distinct address spaces must be provided to _________ - and a covert channel analysis is conducted. B2 adds assurance by adding requirements to the design of the system






20. Which evaluation class of the Trusted Network Interpretation (TNI) offers security domains?






21. The total combination of protection mechanisms within a computer system






22. A subject at a given clearance may not read an object at a higher classification






23. Ssoftware that is stored within ROM (Read-Only Memory) - (ROM is nonvolatile)






24. Security Labels are not required until __________; thus C2 does not require security labels but B1 does






25. Security Policies that prevent information from flowing from a higher security level to a lower security level are called ____________.






26. In both the Bell-LaPadula and Biba Models if the word "Simple is used ______________.






27. Minimal Security






28. Ensuring thta information does not flow from a higher security lever to a lower level in the Bell-LaPadula Model is referred to as ___________________ - which would take place through a "write down" operation. (An actual compromise occurs if and when






29. Software - hardware and firmware must be able to be tested individually to ensure that each enforces the security policy in an effective manner throughout their lifetimes.






30. Bell-LaPadula model was proposed for enforcing access control in _____________________.






31. Which addresses a portion of the primary memory by specifying the actual address of the memory location?






32. When a portion of primary memory is accessed by specifying the actual address of the memory location






33. Mediates all access and Functions between subjects and objects.






34. The Bell-LaPadula Model is a _______________ that enforces Confidentiality aspect of access control. Formed by David Bell and Leonard LaPadula.






35. System Architecture that separates system functionality into Hierarchical layers






36. A form of ROM(Read-Only Memory) that can be modified after it has been manufactured. It can only be programmed only one time.






37. An abstract machine which must mediate all access to subjects to objects - be protected from modification - be verifiable as correct - and is always invoked






38. The Biba model (introduced in 1977) - The Sutherland model (published in 1986) - The Brewer-Nash model (published in 1989)






39. Users are trusted but a certain level of accountability is required. C2 over is seen as the most reasonable class for commmercial applications - but the level of protection is still relatively weak.






40. Commonly referred to as The Big Mess Because of its lack of structure. MS-DOS is an example of a monolithic operation system






41. THE (Technische Hogeschool Eindhoven) - VAX/VMS - Multics and Unix . THE and Multics are no longer in use






42. The Policy must be explicit and well defined and enforced by the mechanisms within the system






43. The Biba Model - ______________: A subject cannot request service (invoke) to subjects of higher integrity






44. Which in the Orange Book ratings represents the highest level of trust?






45. According to the Orange Book - which security level is the first to require a system to protect against covert timing channels?






46. Based on the Bell-LaPadula Security model - and evidence of reference monitor enforcement must be available.






47. Includes the security kernel as well as other security-related system functions that are within the boundary of the trusted computing base. System elements that are outside of the security perimeter need not be trusted.






48. Which TCSEC level first addresses object reuse?






49. Another word for Primary storage and distinguishes physical memory from virtual memory.






50. The type of environment that would require A1 systems is the most secure of secure environments. It deals with top-secret information and cannot adequately trust anyone using the systems without strict authentication - restrictions and auditing.






Can you answer 50 questions in 15 minutes?



Let me suggest you:



Major Subjects



Tests & Exams


AP
CLEP
DSST
GRE
SAT
GMAT

Most popular tests