TestLab

Practice by Category & Subject

Select a subject to start practicing

Business Finance & Management

Excel
1521
Financial Accounting
1463
Operations Management
871
Business Management
860

Industrial Engineering & Manufacturing

Thermodynamics
800
Engineering Mathematics
744
Machine Design
490
Strength of Materials
486

IT & Programming

PHP
926
Python
835
HTML
674
Wordpress
647

Design & Multimedia

Adobe Photoshop
1122
Microsoft PowerPoint
954
Adobe Illustrator
690
CorelDRAW
313

Content Writing & Translation

Microsoft Word
1064
English Language
851
Linguistics
425
Academic Writing
234

Administrative Support

Microsoft Outlook
481
Customer Service
287
Google Search
218
Computer Skills
217

View All Subjects

Features Pricing

Practice Features Pricing Sign In Sign Up

Home
Practice
CISSP Security Architecture And Design
Cyber Security & Ethical Hacking

Quick Navigation

Back to CISSP Security Architecture And Design All Subjects

Other Cyber Security & Ethical Hacking Subjects

GIAC

30 questions

CISSP Security Architecture And Design - Cyber Security & Ethical Hacking

Practice questions to test your knowledge and improve your understanding.

Answered

Correct

Accuracy

Question 1 Easy Mcq

✓ Correct ✗ Incorrect

The total(sum)combination of protection mechanisms within a computer system. The TCB includes hardware - software - and firmware.

Disclosure of residual data

The Trusted Computing Base (TCB)

Relative Addresses

Division B - Mandatory Protection

Explanation:

The Trusted Computing Base (TCB) represents the complete set of hardware, firmware, and software components that enforce the system's security policy. It acts as the foundation for all security operations, ensuring that every mechanism within it functions correctly to protect the system. Because the TCB encompasses the entire protection infrastructure, it is the only option that accurately describes the total combination of security mechanisms. This holistic definition makes it the precise term for the aggregate of all security controls in a computer system.

Question 2 Easy Mcq

✓ Correct ✗ Incorrect

The Bell-LaPadula Model is a _______________.

Subject to Object Model

Be protected from modification

Reduced Instruction Set Computers (RISC)

Its classification label (Top Secret - Secret or confidential)

Explanation:

The Bell-LaPadula model is a mandatory access control framework specifically designed to protect classified information by enforcing a strict Subject-to-Object hierarchy. It operates on the principle that a subject with a lower security clearance cannot read or write to an object with a higher classification level, effectively preventing unauthorized data leakage. This model ensures that information flows only from higher to lower security levels, thereby maintaining the confidentiality of sensitive data within the system. By strictly defining these access relationships, it creates a robust environment where subjects are only permitted to interact with objects they are authorized to access based on their clearance. Consequently, the model is fundamentally categorized as a Subject to Object Model that governs secure information flow.

Question 3 Easy Mcq

✓ Correct ✗ Incorrect

Mandatory access control is enfored by the use of security labels.

Need-to-know

Division B - Mandatory Protection

The National Computer Security Center (NCSC)

Orange Book - D

Explanation:

Mandatory access control relies on security labels attached to subjects and objects to define strict access rules. The Orange Book defines Division B, known as Mandatory Protection, as the specific security level where these labels enforce system-wide policies. In this model, the operating system automatically grants or denies access based on label comparisons rather than user discretion. This ensures that sensitive data remains protected even if a user attempts to bypass standard permissions. Consequently, the use of security labels is the defining characteristic of this mandatory protection category.

Question 4 Easy Mcq

✓ Correct ✗ Incorrect

A1 is also called "Verified Design" and requires formal verification of the design and specifications.

*-Integrity Axiom

Security Policy - Orange Book

Pipelining

Orange Book - A1

Explanation:

The Orange Book, formally known as the Trusted Computer System Evaluation Criteria, defines security classes ranging from D to A. Class A1, often referred to as "Verified Design," represents the highest level of assurance by mandating formal mathematical verification of both the system's design and its specifications. This rigorous process ensures that the security properties are mathematically proven rather than just tested, making it the definitive standard for verified security architectures.

Question 5 Medium Mcq

✓ Correct ✗ Incorrect

Permits a database to have two records that are identical except for Their classifications

The Trusted Computing Base (TCB)

Ring 3

No write down

Polyinstantiation

Explanation:

Polyinstantiation is a security mechanism that allows a database to store multiple records for the same object, distinguished by different security classifications or levels. This technique ensures that users at different clearance levels see distinct, non-conflicting data rather than a single merged view. By maintaining separate records with varying attributes, the system prevents unauthorized users from inferring sensitive information based on missing data. It effectively resolves conflicts between high and low-level users by providing tailored views of the same entity. This approach is essential in multi-level security environments to maintain data integrity across classification boundaries.

Question 6 Medium Mcq

✓ Correct ✗ Incorrect

The subject must have Need to Know for ONLY the information they are trying to access.

System High Security Mode

The Strong star property rule

The Clark Wilson integrity model

Explanation:

System High Security Mode is the correct choice because it specifically mandates that every subject accessing the system must possess a Need to Know classification for the specific data they are requesting. This mode ensures that even if a user has a high-level security clearance, they cannot access information below their clearance level unless explicitly authorized for that specific need, thereby strictly enforcing the principle of least privilege regarding data access.

Question 7 Easy Mcq

✓ Correct ✗ Incorrect

B1 is the ___________________ of the Trusted Network Interpretation (TNI) or TCSEC that offers labeled security protection.

First evaluation class

Swap Space

Cache Memory

The Common Criteria

Explanation:

Class B1 represents the highest level of security within the Trusted Computer System Evaluation Criteria (TCSEC), also known as the Orange Book. This specific tier introduces labeled security protection, which allows the system to enforce mandatory access controls based on security labels assigned to subjects and objects. By implementing these labels, the system can strictly regulate information flow to prevent unauthorized access, thereby offering the most robust security guarantees among all TCSEC classes. This advanced capability distinguishes it from lower evaluation classes that lack such sophisticated labeling mechanisms. Consequently, it stands as the definitive standard for systems requiring rigorous, label-based security enforcement.

Question 8 Medium Mcq

✓ Correct ✗ Incorrect

Which evaluation class of the Trusted Network Interpretation (TNI) offers security domains?

Bell-LaPadula Model

Trusted Products Evaluation Program (TPEP)

Trusted hardware - Software and Firmware

Explanation:

The B3 evaluation class within the Trusted Network Interpretation specifically defines the requirements for providing security domains, which are essential for compartmenting information within a system. This class ensures that the Trusted Computing Base enforces strict access controls to maintain the integrity and confidentiality of data across these distinct domains. By implementing mandatory access control policies, B3 allows organizations to securely handle sensitive information without unauthorized cross-domain access. Consequently, it is the designated class that directly addresses the need for structured security domains in a trusted network environment.

Question 9 Easy Mcq

✓ Correct ✗ Incorrect

What does the Clark-Wilson security model focus on

Swap Space

Types of covert channels

Integrity

The TCSEC - Aka Orange Book

Explanation:

The Clark-Wilson security model is specifically designed to ensure data integrity within a system by enforcing strict access controls and transaction rules. It mandates that all data access must occur through well-defined, audited procedures known as certified transactions, preventing unauthorized modifications. This approach guarantees that data remains consistent, accurate, and trustworthy throughout its lifecycle. By focusing on integrity, the model protects systems from accidental or malicious tampering without needing to address confidentiality or availability directly.

Question 10 Easy Mcq

✓ Correct ✗ Incorrect

Certification is a Technical review that assesses the _____________ - where as Accreditation is management's Official acceptance of the information in the Certification process findings.

Security mechanisms and evalautes their effectivenes

C2 - Controlled Access Protection

A Domain

The National Computer Security Center (NCSC)

Explanation:

Certification is a technical review that specifically assesses the security mechanisms and evaluates their effectiveness against defined requirements. This process focuses on the operational controls and technical configurations to ensure they function as intended. In contrast, accreditation is the subsequent administrative step where management officially accepts the findings. Therefore, the correct completion describes the technical evaluation of security mechanisms and their efficacy.

Question 11 Easy Mcq

✓ Correct ✗ Incorrect

Happen because input data is not checked for appropriate length at time of input

Security Policy - Orange Book

Multitasking

Invocation Property

Buffer overflows

Explanation:

Buffer overflows occur when a program writes more data to a fixed-size memory buffer than it can hold, typically because the input length was not validated before processing. This lack of length checking allows excess data to overwrite adjacent memory locations, potentially corrupting data or executing arbitrary code. The root cause is directly tied to the failure to enforce input constraints during the initial data reception phase. Consequently, this vulnerability is a classic example of how unchecked input leads to severe system instability and security breaches.

Question 12 Easy Mcq

✓ Correct ✗ Incorrect

TCB contains The Security Kernel and all ______________.

Security protection mechanisms

The National Computer Security Center (NCSC)

Documentation - Orange Book

Ring 3

Explanation:

The Trusted Computing Base (TCB) encompasses the entire set of protection mechanisms required to enforce a system's security policy. This includes the Security Kernel, which acts as the core enforcement point, alongside all other hardware, firmware, and software components that contribute to system security. By integrating these various elements, the TCB ensures that only authorized actions can occur, thereby maintaining the integrity and confidentiality of the system. Any component outside this base is assumed to be untrusted and cannot be relied upon for security enforcement.

Question 13 Easy Mcq

✓ Correct ✗ Incorrect

When a portion of primary memory is accessed by specifying the actual address of the memory location

Trusted hardware - Software and Firmware

Attributable data

Files - directories and devices

Direct addressing

Explanation:

Direct addressing is the fundamental memory access method where the CPU uses the actual physical address contained in an instruction to fetch data directly from primary memory. This technique allows for immediate and precise retrieval of specific memory locations without any intermediate translation or indirection. By specifying the exact address, the processor efficiently maps the instruction to the corresponding hardware location, ensuring fast and deterministic execution of programs that rely on fixed memory layouts.

Question 14 Easy Mcq

✓ Correct ✗ Incorrect

Contains the beginning address

Buffer overflows

A Base Register (Memory Management)

State machine model

The Strong star property rule

Explanation:

A Base Register holds the starting memory address for a specific process, ensuring that all subsequent address calculations are relative to this initial point. By storing the beginning address, the system can safely map logical addresses to physical memory locations without overlapping with other processes. This mechanism is fundamental to memory management, as it isolates each program's address space and prevents unauthorized access to memory regions outside its allocated range. Consequently, the base register is the specific component designed to contain and manage the beginning address of a process.

Question 15 Easy Mcq

✓ Correct ✗ Incorrect

Static packet filtering firewalls are limited to ________.

Inspecting packets for which there are good application proxy filtering rules

Inspecting packets in isolation from their context

Both A and B

Neither A nor B

Explanation:

Static packet filtering firewalls operate by examining individual packets in isolation, making decisions solely based on header information like source and destination IP addresses and ports. They lack the ability to understand the broader network context or the state of active connections, which limits their security depth compared to dynamic or stateful inspection methods. This fundamental design choice means they cannot track conversation flows or detect complex attacks that span multiple packets. Consequently, their primary limitation is the inability to correlate packet data with the specific context of an ongoing session. This architectural constraint defines their operational boundary and explains why they are considered less robust than modern firewall technologies.

Question 16 Easy Mcq

✓ Correct ✗ Incorrect

Data in Cache can be accessed much more quickly than Data

Stored in Reak Memory

Identification - Orange Book

Examples of Layered Operating Systems

Explanation:

Cache memory is designed with significantly higher speed than main memory to bridge the performance gap between the CPU and slower storage. By storing frequently accessed data in fast static RAM, the system avoids the latency penalties associated with fetching information from the slower main memory. This architectural layering ensures that the processor can retrieve instructions and data almost instantly, maintaining high computational throughput without waiting for the main memory subsystem.

Question 17 Easy Mcq

✓ Correct ✗ Incorrect

What does the simple security (ss) property mean in the Bell-LaPadula model?

Continuous protection - O/B

Trusted hardware - Software and Firmware

No read up

Division B - Mandatory Protection Architecture

Explanation:

The simple security property, often called the "no read up" rule, strictly forbids a subject at a lower security clearance from reading an object at a higher classification level. This mechanism prevents lower-level users from accessing sensitive information they are not authorized to see, thereby maintaining confidentiality within the system. By blocking upward reads, the model ensures that data flows only in a direction that protects higher-level secrets from being compromised by lower-level processes. This fundamental restriction is the core definition of the simple security condition in the Bell-LaPadula model. It effectively creates a barrier where a user can only read data they have explicit permission to access based on their clearance.

Question 18 Easy Mcq

✓ Correct ✗ Incorrect

A ring protection system ________: User mode programs from direct access to peripherals and requires them to make use of services running at more privileged levels.

The Evaluated Products List (EPL) with their corresponding rating

Prohibits

Process isolation

Security Policy

Explanation:

A ring protection system enforces strict isolation between different privilege levels, effectively prohibiting user mode programs from directly accessing hardware peripherals. This mechanism forces all peripheral interactions to go through specific services or drivers running at higher privilege rings, ensuring that untrusted applications cannot compromise system integrity. By blocking direct access, the system creates a secure boundary that prevents malicious or erroneous code from causing hardware conflicts or data corruption. This architectural design is fundamental to operating system security models like the Trusted Computer System Evaluation Criteria. Consequently, the system strictly prohibits unauthorized direct access to maintain a robust security posture.

Question 19 Medium Mcq

✓ Correct ✗ Incorrect

Audit data must be captured and protected to enforce accountability

Primary storage

Accountability - Orange Book

Evaluated separately

The security perimeter

Explanation:

The Orange Book, or TCSEC, specifically defines the "Accountability" security objective to ensure that actions can be traced to individuals or processes. This requirement mandates that audit data be captured and protected to create a reliable record of system activities, which is essential for enforcing accountability. By safeguarding this data, organizations can effectively investigate security incidents and verify that users are held responsible for their actions within the system.

Question 20 Easy Mcq

✓ Correct ✗ Incorrect

What is called the formal acceptance of the adequacy of a system's overall security by management?

The Red Book

A Thread

Accreditation

Explanation:

Accreditation is the formal, official, and documented management decision that a system's security controls are adequate to protect classified information or support a specific mission. This process signifies that the organization accepts the residual risk and authorizes the system to operate within its intended environment. It represents the culmination of a rigorous security assessment where leadership explicitly endorses the system's overall security posture. Without this formal acceptance, the system cannot legally or officially process sensitive data or perform its designated functions. Therefore, it is the definitive term for management's approval of a system's security adequacy.

Question 21 Easy Mcq

✓ Correct ✗ Incorrect

What is defined as the hardware - firmware and software elements of a trusted computing base that implement the reference monitor concept?

The security perimeter

A security kernel

Trusted Products Evaluation Program (TPEP)

Explanation:

The security kernel is the core component of a Trusted Computing Base that enforces the reference monitor concept by mediating all access requests to system resources. It consists of the essential hardware, firmware, and software elements required to verify subjects and protect objects from unauthorized access. By strictly implementing mandatory access control policies, it ensures that no other system components can bypass security rules. This centralized enforcement mechanism guarantees the integrity and confidentiality of the entire computing environment. Consequently, it is the definitive answer for the elements implementing the reference monitor concept.

Question 22 Easy Mcq

✓ Correct ✗ Incorrect

TCSEC addresses Confidentiality - but _____________ . The TCSEC focuses mainly on one attribute of Security Confidentiality.

The Rule is talking about writing

The Monolithic Operation system Architecture

The security perimeter

NOT Integrity

Explanation:

TCSEC, also known as the Orange Book, was specifically designed to evaluate the security of computer systems based on their ability to protect information confidentiality. While it established rigorous standards for access controls and data protection, it notably did not address the integrity of data or the availability of systems. This means the framework focuses almost exclusively on preventing unauthorized disclosure of information, leaving other critical security attributes like integrity outside its primary scope. Consequently, the statement correctly identifies that TCSEC addresses confidentiality but explicitly does not cover integrity.

Question 23 Easy Mcq

✓ Correct ✗ Incorrect

The TCB is the ________________ within a computer system that work together to enforce a security policy.

Accountability - Orange Book

The Integrity of data within applications

Pagefile.sys file

Totality of protection mechanisms

Explanation:

The Trusted Computing Base (TCB) represents the complete set of hardware, firmware, and software components that enforce a system's security policy. Every element within this totality must function correctly and interact securely to maintain the integrity of the entire protection architecture. If any single part of the TCB fails or is compromised, the overall security guarantees of the system are immediately invalidated. This holistic view ensures that all mechanisms work in unison to prevent unauthorized access or policy violations. Consequently, defining the TCB as the total collection of these protective measures accurately captures its critical role in cybersecurity.

Question 24 Easy Mcq

✓ Correct ✗ Incorrect

The security kernel is the mechanism that _____________ of the reference monitor concept.

Enforces the rules

Secondary Storage

Firmware

Explanation:

The security kernel acts as the core component of an operating system that strictly enforces the security rules defined by the reference monitor concept. It ensures that every access request is validated against these policies before any data or resource is granted, thereby maintaining system integrity. By mediating all interactions between subjects and objects, it prevents unauthorized access and guarantees that the security policy is never violated. This centralized enforcement mechanism is essential for achieving high security levels in trusted computing systems. Without the security kernel, the theoretical rules of the reference monitor would lack the practical means to be implemented effectively.

Question 25 Easy Mcq

✓ Correct ✗ Incorrect

Applications and user activity

Ring 3

The *-Property rule (Star property)

Higher or equal to access class

Implement software or systems in a production environment

Explanation:

Applications and user activity typically operate in Ring 3, which is the standard user mode in operating systems like Windows and Linux. This ring provides necessary isolation from the kernel in Ring 0, ensuring that user programs cannot directly access critical hardware or system resources without permission. By running in this lower privilege level, the system maintains security and stability while allowing normal application execution. This architectural separation prevents malicious or buggy software from crashing the entire system or compromising sensitive data. Consequently, Ring 3 is the designated environment for all standard software interactions and user tasks.

Question 26 Medium Mcq

✓ Correct ✗ Incorrect

When a vendor submits a product for evaluation - it submits it to the ____________.

C1 - Discretionary Security Protection

The Rule is talking about writing

The National Computer Security Center (NCSC)

A security kernel

Explanation:

The National Computer Security Center (NCSC) was the primary US government body responsible for evaluating and certifying computer systems against security standards like the Orange Book. When a vendor submits a product for evaluation, it is sent to this central authority to undergo rigorous testing and validation of its security features. The NCSC would then issue a certification rating based on the system's compliance with specific protection levels. This centralized process ensured that only verified secure systems could be adopted by federal agencies. Consequently, the NCSC is the definitive destination for such submissions in the historical context of US computer security policy.

Question 27 Medium Mcq

✓ Correct ✗ Incorrect

B3 is also called "Security Domains" and imposes more granularity in each protection mechanism.

A security domain

Prevent secret information from being accessed

Access control to the objects by the subjects

Orange Book - B3

Explanation:

The Orange Book, or TCSEC, classifies security levels where B3 represents the highest level of the structured protection category. This specific level is formally known as "Security Domains" because it enforces strict isolation between different protection domains to prevent unauthorized information flow. It imposes significant granularity by ensuring that each subject operates within a defined domain with its own memory space and access controls. This architecture guarantees that a compromise in one domain does not affect others, thereby providing a robust defense against covert channels. Consequently, identifying B3 as the Security Domains level accurately reflects its advanced capability to manage complex access control policies effectively.

Question 28 Medium Mcq

✓ Correct ✗ Incorrect

If a system initializes in a secure state and all allowed state transitions are secure - the every subsequent state will be secure no matter what inputs occur.

Basic Security Theorem (used in computer science) definition

Attributable - original - accurate - contemporaneous and legible

Types of covert channels

Identification - Orange Book

Explanation:

This statement defines the Basic Security Theorem, which guarantees that if a system starts in a secure state and only executes secure state transitions, it will remain secure regardless of external inputs. The theorem establishes a fundamental property of secure systems by ensuring that the initial secure configuration and the integrity of allowed transitions prevent any violation of security policies. Consequently, the system's state is preserved as secure under all possible input scenarios, validating the correctness of this specific definition. This concept is crucial for designing systems that maintain confidentiality and integrity over time without relying on specific input restrictions. It provides a strong theoretical foundation for proving the security of state-transition-based models in computer science.

Question 29 Easy Mcq

✓ Correct ✗ Incorrect

Security Labels are not required until __________; thus C2 does not require security labels but B1 does

Security rating B

Controls the checks

Mandatory access control

Explanation:

Security labels are only necessary when a system reaches the B2 rating, which introduces mandatory access control (MAC) requirements. Below this level, including the B1 rating, systems operate under discretionary access control where labels are not enforced. Therefore, the Trusted Computer Security Evaluation Criteria does not mandate labels until the B2 tier is achieved. This distinction highlights the specific security enhancements introduced at higher classification levels. The transition point for label requirements is clearly defined at the B2 security rating threshold.

Question 30 Easy Mcq

✓ Correct ✗ Incorrect

The Security Model Incorporates the ____________ that should be enforced in the system.

Division D - Minimal Protection

Models concerned with integrity

Security Policy

Discretionary Security Property (ds-property)

Explanation:

A security model serves as a formal framework that translates abstract security requirements into concrete system rules. At its core, this framework is built upon a specific security policy, which defines the exact behaviors and restrictions the system must enforce to protect assets. By incorporating this policy, the model ensures that all access controls and mechanisms align with the organization's intended security posture. Without this foundational policy, the system would lack the necessary guidelines to distinguish between authorized and unauthorized actions. Therefore, the model inherently embodies the policy that dictates how the system operates securely.

Question 31 Easy Mcq

✓ Correct ✗ Incorrect

When a computer uses more than one CPU in parallel to execute instructions is known as?

Programmable Read-Only Memory (PROM)

Multiprocessing

Multitasking

C2 - Controlled Access Protection

Explanation:

Multiprocessing refers to the architectural style utilizing two or more central processing units (CPUs) to execute instructions simultaneously within a single computer system. This parallel execution allows the system to handle multiple processes or threads concurrently, significantly improving overall computational throughput and efficiency. By distributing tasks across multiple processors, the computer can perform complex calculations faster than a single CPU could manage alone. This distinct capability differentiates it from multitasking, which often relies on time-slicing on a single processor rather than true parallel hardware execution. Therefore, the specific act of using multiple CPUs in parallel is accurately defined as multiprocessing.

Filter by Difficulty

easy medium hard

Track Progress

Difficulty Filter

easy Easy

medium Medium

hard Hard

Other Subjects

Business Finance & Management

Industrial Engineering & Manufacturing

IT & Programming

Design & Multimedia

Content Writing & Translation

Administrative Support

Quick Navigation

Other Cyber Security & Ethical Hacking Subjects

CISSP Security Architecture And Design - Cyber Security & Ethical Hacking

Explanation:

Explanation:

Explanation:

Explanation:

Explanation:

Explanation:

Explanation:

Explanation:

Explanation:

Explanation:

Explanation:

Explanation:

Explanation:

Explanation:

Explanation:

Explanation:

Explanation:

Explanation:

Explanation:

Explanation:

Explanation:

Explanation:

Explanation:

Explanation:

Explanation:

Explanation:

Explanation:

Explanation:

Explanation:

Explanation:

Explanation:

Filter by Difficulty

Track Progress

Difficulty Filter

Other Subjects

Other Cyber Security & Ethical Hacking Subjects

Quick Navigation

Similar Practices