Test your basic knowledge |

CISSP Security Architecture And Design

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. n this class more granularity is provided in each protection mechanism - and the programming code that is not necessary to support the security policy is excluded.






2. In ______________ the subject must have: Need to Know for ALL the information contained within the system.






3. The reference monitor is an access control concept - Referring to ________________ that mediates all accesses to objects by subjects based on information in an access control database.






4. What is defined as the hardware - firmware and software elements of a trusted computing base that implement the reference monitor concept?






5. In the Bell-LaPadula Model the Subject's Label contains ___________________.






6. When the RAM and secondary storage are combined the result is __________.






7. Certification is a Technical review that assesses the _____________ - where as Accreditation is management's Official acceptance of the information in the Certification process findings.






8. The Biba Model - _____________: A subject cannot read data from a lower Integrity level " No Read Down"






9. Subjects and Objects cannot change their security levels once they have been instantiated (created)






10. When a vendor submits a product for evaluation - it submits it to the ____________.






11. A set of objects that a subject is able to access






12. Buffer overflows occurs when a program or process tries to store more data in a _____________ than it was intended to hold.






13. Permits a database to have two records that are identical except for Their classifications






14. Bell-LaPadula model was proposed for enforcing access control in _____________________.






15. Levels of Security and Levels of Trust Lower Letters of the alphabet represent higher levels of security. Higher numbers indicate a greater level of trust.






16. What model use an access control triples and requires that the system maintain separation of duty ?






17. Software - hardware and firmware must be able to be tested individually to ensure that each enforces the security policy in an effective manner throughout their lifetimes.






18. When the address location that is specified in the program instruction contains the address of the final desired location.






19. Requires more stringent authentication mechanisms and well-defined interfaces among layers.






20. In access control terms - the word "dominate" refers to ___________.






21. For a subject to have read access to an object in a Multi-Level Security Policy - it is necessary that the subject's sensitivity label must ____________________.

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


22. Involves sharing the processor amoung all ready processes






23. Which can be used as a covert channel?






24. The subject must have Need to Know for ONLY the information they are trying to access.






25. Which TCSEC level first addresses object reuse?






26. Discretionary protection






27. A channel within a computer system or network that is designed for the authorized transfer of information is identified as a(n)?






28. The assignment of a specific individual to administer the security-related functions of a system.






29. Discretionary access control is based on individuals and/or groups. It requires a separation of users and information and identification and authentication of individual entities






30. Which addresses a portion of the primary memory by specifying the actual address of the memory location?






31. Execute one instruction at a time.






32. Commonly referred to as The Big Mess Because of its lack of structure. MS-DOS is an example of a monolithic operation system






33. Security Policies that prevent information from flowing from a higher security level to a lower security level are called ____________.






34. Intended for environments that require systems to handle classified data.






35. Each data object must contain a classification label and each subject must have a clearance label.






36. The total(sum)combination of protection mechanisms within a computer system. The TCB includes hardware - software - and firmware.






37. Ensuring thta information does not flow from a higher security lever to a lower level in the Bell-LaPadula Model is referred to as ___________________ - which would take place through a "write down" operation. (An actual compromise occurs if and when






38. Which increases the performance in a computer by overlapping the steps of different instructions?






39. Minimal Security






40. Access control labels must be associated properly with objects.






41. The Security Model Incorporates the ____________ that should be enforced in the system.






42. Best defined as a mode of system termination that automatically leaves system processes and components in a secure state when a failure occurs or is detected in the system?






43. Operating System Kernel






44. I/O drivers and utilities






45. The total combination of protection mechanisms within a computer system






46. Logical access control mechanisms are used to enforce authentication and the uniquenes of each individual's identification.






47. Contains the beginning address






48. In B1 the security policy is based on Informal statement and the design specifications are reviewed and verified where as in B2 the ___________________ - and the system design and implementation are subject to more thorough review and testing procedu






49. Reference Monitor is responsible for ______________ it compares the security labels of a subject and an object






50. According to the Orange Book - trusted facility management is not required for which security levels?