Test your basic knowledge |

CISSP Security Architecture And Design

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. The Bell-LaPaula Model's main goal was to ___________________ in an unauthorized manner. (Developed by the US gov)






2. Logical access control mechanisms are used to enforce authentication and the uniquenes of each individual's identification.






3. Mediates all access and Functions between subjects and objects.






4. TCB contains The Security Kernel and all ______________.






5. Execute one instruction at a time.






6. Remaining parts of the operating system






7. The hardware - firmware and software elements of a trusted computing base that implement the reference monitor concept.






8. Should always trace to individuals responsible for observing and recording the data






9. The Security Kernel is the Core of The TCB and is the _____________ to building trusted computing systems.






10. In B2 Subjects and devices requre labels and the system must NOT allow ________. No Trapdoors exists.






11. A type of memory used for High-speed writing and reading activities.






12. In both the Bell-LaPadula and Biba Models if the word "Simple is used ______________.






13. A domain of trust that shares a single security policy and single management






14. Access control labels must be associated properly with objects.






15. Software - hardware and firmware must be able to be tested individually to ensure that each enforces the security policy in an effective manner throughout their lifetimes.






16. A nonvolatile storage media etc computer hard drive - floppy disks and CD-ROMs






17. I/O drivers and utilities






18. Ensuring thta information does not flow from a higher security lever to a lower level in the Bell-LaPadula Model is referred to as ___________________ - which would take place through a "write down" operation. (An actual compromise occurs if and when






19. Discretionary access control is based on individuals and/or groups. It requires a separation of users and information and identification and authentication of individual entities






20. Which TCSEC level first addresses object reuse?






21. Levels of Security and Levels of Trust Lower Letters of the alphabet represent higher levels of security. Higher numbers indicate a greater level of trust.






22. In the Orange Book - functionality and assurance are NOT _____________ as they are in the ITSEC and the Common Criteria.






23. The biggest difference between System High Security Mode and Dedicated Security Mode is: ______.






24. In B1 the security policy is based on Informal statement and the design specifications are reviewed and verified where as in B2 the ___________________ - and the system design and implementation are subject to more thorough review and testing procedu






25. Which would be designated as objects on a MAC system?






26. The Security Model Incorporates the ____________ that should be enforced in the system.






27. Involves sharing the processor amoung all ready processes






28. Bell-LaPadula - ______________: This rule is based on named subjects and objects. It specifies that specific permissions allow a subject to pass on permissions to pass on permissions at its own discretion. These permissions are stored in an access ma






29. In which users are processing information at the same sensitivity level; thus - strict access control and auditing measures are not required. It would be a trusted envirnment with low security concerns.






30. To ensure that the Trusted Computing Base is not tampered with during shipment or installation.






31. Bell-LaPadula model was proposed for enforcing access control in _____________________.






32. A portion of a process. When the thread is generated - it shares the same domain(resources) as its process.






33. System Architecture that separates system functionality into Hierarchical layers






34. For a subject to have read access to an object in a Multi-Level Security Policy - it is necessary that the subject's sensitivity label must ____________________.

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


35. Best defined as a mode of system termination that automatically leaves system processes and components in a secure state when a failure occurs or is detected in the system?






36. In both the Bell-LaPadula and Biba Models if the word "* or Star is used - _______________.






37. A channel within a computer system or network that is designed for the authorized transfer of information is identified as a(n)?






38. Data in Cache can be accessed much more quickly than Data






39. Contains the ending address






40. Contains the beginning address






41. Commonly referred to as The Big Mess Because of its lack of structure. MS-DOS is an example of a monolithic operation system






42. Mandatory Protection






43. Reference Monitor is responsible for ______________ it compares the security labels of a subject and an object






44. In Access Control terms it means to be higher than or equal to. In the Bell-Lapadula Model - this is refered to as the dominance relation - which is the relationship of the subject's clearance to the object's classification

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


45. The TCB is the ________________ within a computer system that work together to enforce a security policy.






46. An abstract machine which must mediate all access to subjects to objects - be protected from modification - be verifiable as correct - and is always invoked






47. Security Labels are not required until __________; thus C2 does not require security labels but B1 does






48. The Biba model (introduced in 1977) - The Sutherland model (published in 1986) - The Brewer-Nash model (published in 1989)






49. Another word for Primary storage and distinguishes physical memory from virtual memory.






50. According to the Orange Book - which security level is the first to require a system to protect against covert timing channels?