Chapter 3

Question 1

Systems engineering activities intended to deter and/or delay exploitation of critical technologies in a system in order to impede countermeasure development, unintended technology transfer, or alteration of a system.

Answer 1

Anti-tamper (AT)

Question 2

A chronological record of system activities, which includes records of system accesses and operations performed in a given period.

Answer 2

Audit Log

Question 3

An individual entry in an audit log related to an audited event.

Answer 3

Audit Record

Question 4

A chronological record that reconstructs and examines the sequence of activities surrounding or leading to a specific operation, procedure, or event in a security-relevant transaction from inception to final result.

Answer 4

Audit Trail

Question 5

A record showing who has accessed an information technology (IT) system and what operations the user has performed during a given period.

Answer 5

Audit Trail

Question 6

To confirm the identity of an entity when that identity is presented.

Answer 6

Authenticate

Question 7

Verifying the identity of a user, process, or device, often as a prerequisite to allowing access to resources in an information system.

Answer 7

Authentication

Question 8

A security measure designed to protect a communication system against acceptance of fraudulent transmission or simulation by establishing the validity of a transmission, message, originator, or a means of verifying an individual’s eligibility to receive specific categories of information.

Answer 8

Authentication

Question 9

A copy of files and programs made to facilitate recovery, if necessary.

Answer 9

Backup

Question 10

A software and/or hardware product that is commercially ready-made and available for sale, lease, or license to the general public.

Answer 10

Commercial-off-the-shelf (COTS)

Question 11

Establishment of and charter for a group of qualified people with responsibility for the process of controlling and approving changes throughout the development and operational lifecycle of products and systems; may also be referred to as a change control board.

Answer 11

Configuration Control Board

Question 12

An aggregation of information system components that is designated for configuration management and treated as a single entity in the configuration management process.

Answer 12

Configuration Item

Question 13

Item or aggregation of hardware, software, or both, which is designated for configuration management and treated as a single entity in the configuration management process.

Answer 13

Configuration Item

Question 14

A collection of activities focused on establishing and maintaining the integrity of information technology products and information systems, through control of processes for initializing, changing, and monitoring the configurations of those products and systems throughout the system development life cycle.

Answer 14

Configuration Management

Question 15

The set of parameters that can be changed in hardware, software, or firmware that affect the security posture and/or functionality of the information system.

Answer 15

Configuration Settings

Question 16

Management policy and procedures used to guide an enterprise response to a perceived loss of mission capability.

Answer 16

Contingency Plan

Question 17

Information security strategy integrating people, technology, and operation capabilities to establish variable barriers across multiple layers and missions of the organization.

Answer 17

Defense-in-depth

Question 18

The cryptographic transformation of data to produce ciphertext.

Answer 18

Encryption

Question 19

Communications encryption in which data is encrypted when being passed through a network, but routing information remains visible.

Answer 19

End-to-end Encryption

Question 20

Safeguarding information in an information system from point of origin to point of destination.

Answer 20

End-to-end Security

Question 21

The principle that a security architecture should be designed so that each entity is granted the minimum system resources and authorizations that the entity needs to perform its function.

Answer 21

Least Privilege

Question 22

A determination within the executive branch in accordance with directives issued pursuant to this order that a prospective recipient requires access to a specific classified information in order to perform or assist in a lawful and authorized governmental function.

Answer 22

Need-to-know

Question 23

Protection against an individual falsely denying having performed a particular action.

Answer 23

Non-repudiation

Question 24

Provides the capability to determine whether a given individual took a particular action such as creating information, sending a message, approving information, and receiving a message.

Answer 24

Non-repudiation

Question 25

A security-focused description of an information system, its operational policies, classes of users, interactions between the system and its users, and the system’s contribution to the operational mission.

Answer 25

Security Concept of Operations

Question 26

A suite of specifications that standardize the format and nomenclature by which software flaw and security configuration information is communicated, both to machines and humans.

Answer 26

Security Content Automation Protocol (SCAP)

Question 27

An occurrence (e.g., and auditable event or flag) considered to have potential security implications to the system or its environment that may require further action (such as noting, investigating, or reacting).

Answer 27

Security-relevant Event

Question 28

Based on Department of Defense policy and security controls, an implementation guide geared to a specific product and version.

Answer 28

Security Technical Implementation Guide (STIG)

Question 29

Contains all requirements that have been flagged as applicable for the product which have been selected on a DoD baseline.

Answer 29

Security Technical Implementation Guide (STIG)

Question 30

Always keep the problem and solution spaces separate.

Answer 30

Security Engineering Principle to Avoid Inefficiency

Question 31

The problem space is defined by the customer’s mission or business needs.

Answer 31

Security Engineering Principle to Avoid Inefficiency

Question 32

The systems engineer and information systems security engineer define the solution space, driven by the problem space.

Answer 32

Security Engineering Principle to Avoid Inefficiency

Question 33

Review web pages, operational procedures and documents, annual reports, and CONOPS and mission needs statement (MNS).

Answer 33

ISSE Methods for Analyzing Organizational and Operational Environments

Question 34

Includes: (i) stakeholder perspective, (ii) system perspective, and (iii) trades perspective.

Answer 34

Protection Needs Perspectives

Question 35

Focuses on what is of value to the stakeholder.

Answer 35

Stakeholder Perspective

Question 36

Based on those assets that are deemed necessary for the system to execute correctly and securely to manage its execution, and to provide for its own protection.

Answer 36

System Perspective

Question 37

Considers protection need aspects associated with all feasible alternatives, as well as those related to a specific decision.

Answer 37

Trades Perspective

Question 38

Specify security capability, performance, effectiveness, and the associated verification and validation measures, and also express constraints on system requirements.

Answer 38

Security Requirements

Question 39

Describe the stakeholder-oriented view of desired capability; include operational, protection, safety, and other needs and expectations of stakeholders, including legal, policy, regulatory, statutory, certification, policy, and other constraints for solutions that support the mission or business.

Answer 39

Stakeholder Requirements

Question 40

Intended to achieve adequate security and help the system meet security objectives set forth for the system.

Answer 40

Design Constraints

Question 41

Allows the team to move forward in the systems engineering process and continue with requirements; must be validated before the design is finalized.

Answer 41

Design Assumption

Question 42

Develop an understanding of the customer’s mission or business.

Answer 42

Determine System Protection Needs Task

Question 43

Help the customer determine what information management is needed to support the mission or business.

Answer 43

Determine System Protection Needs Task

Question 44

Create a model of that information management, with customer concurrence.

Answer 44

Determine System Protection Needs Task

Question 45

Document the results as the basis for defining information systems that will satisfy the customer’s needs.

Answer 45

Determine System Protection Needs Task

Question 46

Contains information types often aggregated together into information domains, and these domains contain the following elements: (i) users or members of the information domain; (ii) rules, privileges, roles, and responsibilities that apply to the users in managing all the information; (iii) and information objects being managed, including processes.

Answer 46

Information Management Model (IMM)

Question 47

Formal documents that cover the official plan for testing a system, subsystem, or component.

Answer 47

Security Test Plan (STP)

Question 48

References the “objective” or “requirement” to be met, the assessment method, and the “object” to be tested.

Answer 48

Security Test Plan (STP)

Question 49

Executed by a security control assessor (SCA); should be an independent third party.

Answer 49

Security Test Plan (STP)

Question 50

Includes: (i) security architecture and design, (ii) security capability and intrinsic behaviors, and (iii) life cycle security.

Answer 50

Security Design Principles

Question 51

Application of these principles is intended to permit a demonstration of system trustworthiness through assurance based on reasoning about relevant and credible evidence.

Answer 51

Security Design Principles

Question 52

Describes the layers of security mechanisms and security architectures that delay, prevent, or deter attacks against the system.

Answer 52

Defense in Depth

Question 53

Involves policies and procedures, training and awareness, physical security, personnel security, system security administration, and facilities countermeasures.

Answer 53

People

Question 54

Involves information assurance, architecture framework areas, IA criteria such as security, PKI, acquisition integration of evaluated products, and system risk assessments.

Answer 54

Technology

Question 55

Principles are centered around people, technology, and operations.

Answer 55

Defense in Depth Principles

Question 56

Involves security policy, assessment and authorization, readiness assessments, security management, key management, attack sensing and warning response, and recovery and reconstitution.

Answer 56

Operations

Question 57

Includes: (i) passive, (ii) active, (iii) close-in, (iv) insider, and (v) distribution.

Answer 57

Classes of Attacks

Question 58

Include traffic analysis, monitoring of unprotected communications, decrypting weakly encrypted traffic, and capture of authentication information.

Answer 58

Passive Attack

Question 59

Can give adversaries indications and warnings of impending actions.

Answer 59

Passive Attack

Question 60

Can result in disclosure of information or data files to an attacker without the consent or knowledge of the user.

Answer 60

Passive Attack

Question 61

Consists of a regular type individual’s attaining close physical proximity to networks, systems, or facilities for the purpose of modifying, gathering, or denying access to information.

Answer 61

Close-in Attack

Question 62

Can be malicious or non-malicious; malicious result from intentional acts and non-malicious result from carelessness, lack of knowledge, or intentional circumvention.

Answer 62

Insider Attack

Question 63

Focus on the malicious modification of hardware or software at the factory or during distribution.

Answer 63

Distribution Attack

Question 64

Include attempts to circumvent or break protection features, introduce malicious code, or steal or modify information.

Answer 64

Active Attack

Question 65

The concept that should a system fail, it fails in a safe state (e.g., anti-tamper encryption measures).

Answer 65

Fail-safe Default

Question 66

Occur when a network converges to a single point.

Answer 66

Single Point of Failure (SPoF)

Question 67

Tasks include: (i) define the system boundaries and interfaces, (ii) document security allocations to the target system and external systems, and (iii) identify data flows between the target system and external systems and the protection needs associated with those data flows.

Answer 67

Define System Security Requirements

Question 68

A high-level diagram in which the boundary of the entire system and the composite protection needs for the target system are reflected.

Answer 68

Initial System Security Context Diagram

Question 69

Describes how the system will work, including connectivity and information flows through the systems and remote sites.

Answer 69

Security CONOPS

Question 70

Covers all of the functionality, missions, or business needs and addresses the inherent risk in operating the system.

Answer 70

Security CONOPS

Question 71

Should be clear, concise, and verifiable.

Answer 71

System Security Requirements

Question 72

Allows a better understanding of what the system has to do; the ways in which it can do it; and to some extent, the priorities and conflicts associated with lower-level functions. It provides information essential to optimizing physical solutions.

Answer 72

Functional Analysis and Allocation

Question 73

Includes: (i) functional flow block diagram, (ii) timeline analysis, and (iii) requirements allocation sheet.

Answer 73

Functional Analysis Key Tools

Question 74

A system engineering document that shows the flow of data between functions and the decisions made by the system.

Answer 74

Functional Flow Block Diagram

Question 75

Informs the team of the duration of various functions over time.

Answer 75

Timeline Analysis Sheet (TLS)

Question 76

Traces functions to the associated detailed specifications; includes: (i) function name, (ii) functional performance and design requirements, and (iii) configuration items.

Answer 76

Requirements Allocation Sheet (RAS) / Requirements Matrix

Question 77

Ensure compliance with a security architecture, design constraints, perform trad-off studies, and define system security design elements.

Answer 77

Develop System Security Design Components Tasks