Test your basic knowledge |

CISSP Security Architecture And Design

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. The Biba Model is not concerned with security levels and confidentiality. It uses _________________.






2. Security Labels are not required until __________; thus C2 does not require security labels but B1 does






3. Which would be designated as objects on a MAC system?






4. The reference monitor is an access control concept - Referring to ________________ that mediates all accesses to objects by subjects based on information in an access control database.






5. Users need to be Identified individually to provide more precise acces control and auditing functionality.






6. TCSEC addresses Confidentiality - but _____________ . The TCSEC focuses mainly on one attribute of Security Confidentiality.






7. What is called the formal acceptance of the adequacy of a system's overall security by management?






8. Configuration management is also defined in the Orange Book BUT As a _____________________ and NOT an operational assurance requirement.






9. In the Bell-LaPadula Model the Subject's Label contains ___________________.






10. The first mathematical model of a multi-level security policy used to define the concept of a secure state - the modes of access - and rules for granting access?






11. I/O drivers and utilities






12. Individual subjects must be uniquely identified.






13. Which Orange Book evaluation level is described as "Discretionary Security Protection"?






14. Contains the ending address






15. The omission of networks and network components in the TCSEC was recognized and addressed in the "Trusted Network Interpretation of the TCSEC" otherwise known as ___________.






16. The Biba Model adresses _____________________.






17. Execute one instruction at a time.






18. All users have a clearance for and a formal need to know about - all data processed with the system.






19. A channel within a computer system or network that is designed for the authorized transfer of information is identified as a(n)?






20. When the RAM and secondary storage are combined the result is __________.






21. Used by Windows systems to reserve the "Swap Space"






22. Ssoftware that is stored within ROM (Read-Only Memory) - (ROM is nonvolatile)






23. B1 is also called "Labeled Security" and each data object must have a classification label and each subject a clearance label. On each access attempt - the classification and clearance are checked to verify that the access is permissible.






24. Levels of Security and Levels of Trust Lower Letters of the alphabet represent higher levels of security. Higher numbers indicate a greater level of trust.






25. What Orange Book security rating is reserved for systems that have been evaluated but fail to meet the criteria and requirements of the higher divisions?






26. Developed after the Bell-LaPadula model. Its a state machine model and is very similar to the Bell-LaPadula Model.






27. Requires more stringent authentication mechanisms and well-defined interfaces among layers.






28. What model use an access control triples and requires that the system maintain separation of duty ?






29. Contains the beginning address






30. The Bell-LaPaula Model's main goal was to ___________________ in an unauthorized manner. (Developed by the US gov)






31. The total(sum)combination of protection mechanisms within a computer system. The TCB includes hardware - software - and firmware.






32. When the contents of the address defined in the program's instruction is added to that of an index register.






33. Based on the Bell-LaPadula Security model - and evidence of reference monitor enforcement must be available.






34. Which TCSEC level first addresses object reuse?






35. The centerpiece of the DoD Rainbow Series publications.Developed by the National Computer Security Center (NCSC)?






36. What does the simple integrity axiom mean in the Biba model?






37. Operating System Kernel






38. In the Orange Book - functionality and assurance are NOT _____________ as they are in the ITSEC and the Common Criteria.






39. If a system initializes in a secure state and all allowed state transitions are secure - the every subsequent state will be secure no matter what inputs occur.






40. Components considered as part of the Trusted Computing Base (from the Orange Book) are?






41. Which Orange Book evaluation level is described as "Verified Design"?






42. The Orange book does NOT Cover ________________ - And Database management systems






43. The Orange book requires protection against two_____________ - which are these Timing and Storage






44. The hardware - firmware and software elements of a trusted computing base that implement the reference monitor concept.






45. The assignment of a specific individual to administer the security-related functions of a system.






46. A nonvolatile storage media etc computer hard drive - floppy disks and CD-ROMs






47. Which increases the performance in a computer by overlapping the steps of different instructions?






48. A domain of trust that shares a single security policy and single management






49. Commonly referred to as The Big Mess Because of its lack of structure. MS-DOS is an example of a monolithic operation system






50. A is a form of EPROM - but its data storage can be erased and modified electrically by onboard programming circuitry and signals.