Chapter 7: Software Development Security

Question 1

Describe local/nondistributed computing.

Answer 1

All user-executed code is stored on the single machine.

Question 2

What is a logic bomb?

Answer 2

A malicious code object that lies dormant until events occur that satisfy one or more logical conditions, at which time they deliver their payload.

Question 3

What is a worm?

Answer 3

A malicious code object that spreads from ssytem to system bearing some type of malicious payload. Unlike viruses, they are self-replicating, requiring no user interaction to propagate.

Question 4

What is distributed computing?

Answer 4

Allowing a user to harness the computing power of one or more remote systems to achieve a single goal.

Question 5

What is an agent or bot?

Answer 5

Intelligent code objects that perform actions on behalf of a user.

Question 6

What is an applet?

Answer 6

A code object sent from a server to a client to perform some action. A miniature program that executes independently of the server that sent it.

Question 7

What are the benefits of applets?

Answer 7

Processing is shifted to the client, freeing up resources on the server
The client can produce datat using local resources rather than waiting for th eremote server, often speeding response.
All data can stay on the client, improving security from the client’s perspective.

Question 8

What are the distinctions between Java and ActiveX applets?

Answer 8

ActiveX is Microsoft only.

ActiveX is not subject to sandbox restrictions, and has full access to the client system.

Question 9

What is a database view?

Answer 9

SQL statements that present data to the user as if it were a table.

Question 10

What is concurrency or edit control in the database context?

Answer 10

A preventative security mechanism that endeavors to make sure that the information in the database is always ocrrect or has its integrity and availability protected. Locking, so only one user at a time can make changes.

Question 11

What is polyinstantiation?

Answer 11

When two or more rows in the same relational database table appear to have identical primary key elements but contain different data for use at differing classification levels. Often used as a defense against some times of inference attacks.

Question 12

What is a data warehouse?

Answer 12

Large databases used to store large amounts of information from a variety of databases for use with specialized analysis techniques. Often contain detailed historical information not normally stored in production databases because of storage limitations or security concerns.

Question 13

What is a data dictionary?

Answer 13

Used for storing critical information about data including usage, type, sources, relationshipts, and formats. Determines access rights for users attempting to access data.

Question 14

What is data mining?

Answer 14

Techniques for combing through data warehouses to look for potential correlated information.

Question 15

What is a data mart?

Answer 15

p. 292. Not well defined.

Question 16

What is primary or real memory?

Answer 16

RAM

Question 17

What is secondary storage?

Answer 17

magnetic and optical media, tapes, disks, hard drives, falsh drives, CD/DVD.

Question 18

What is virtual memory?

Answer 18

Simulating primary storage through use of secondary storage.

Question 19

What is virtual storage?

Answer 19

Simulating secondary storage through the use of primary storage. For example, a RAM disk.

Question 20

What is random access storage?

Answer 20

Storage that allows the operating system to request contents from any point within the media. RAM, for example, but not tape.

Question 21

What is sequential access storage?

Answer 21

Storage that requires scanning through the entire media from the beginning to reach an address. Commonly, tapes.

Question 22

What is volatile storage?

Answer 22

Storage that loses its contents when power is removed.

Question 23

What is nonvolatile storage?

Answer 23

Storage that does not depend on the presence of power to maintain its contents.

Question 24

What is an expert system?

Answer 24

A system that seeks to embody the accumulated knowledge of experts and apply it in a consistent fashion to future decisions.

Question 25

What is a risk of expert systems?

Answer 25

They’re not infalliable. They’re only as good as the data in the knowledge base and the decision making algorithms implemented in the inference engine.

Question 26

What is a neural network?

Answer 26

Chains of computational units used in an attempt to imitate the biological reasoning process of the human mind.

Question 27

How do neural networks work?

Answer 27

They use many layers of summation, each of which requires weighting information to reflect the relative importance of the calculation in the overall decision making process.

Question 28

What is a decision support system?

Answer 28

A knowledge-based application that analyzes business data and presents it in such a way as to make business decisions easier for users.

Question 29

Define fail-secure.

Answer 29

A fail-secure state puts the system in a high level of security and may even disable it entirely until an administrator can diagnose the problem and restore the system to normal operation.

Question 30

Define fail-open

Answer 30

Allows users to bypass failed security controls, erring on the side of permissiveness.

Question 31

Define first generation languages.

Answer 31

All machine languages

Question 32

Define second generation languages.

Answer 32

All assembly languages

Question 33

Define third generation languages

Answer 33

All compiled languages

Question 34

Define fourth generation languages

Answer 34

Languages that attempt to approximate natural languages. Includes SQL

Question 35

Define fifth generation languages.

Answer 35

Programmers create code using visual interfaces

Question 36

What is the Systems Development Life Cycle?

Answer 36

Conceptual definition
Functional requirements determination
Control specification development
design review
Code review walk-through
System test review
Maintenance and change management

Question 37

What is a Conceptual Definition?

Answer 37

A simple statement agreed upon by all interested stakeholders that states the purpose of the project as well as the general system requirements.

Question 38

What is Functional Requirements Determination?

Answer 38

Listing specific system functionalities, consideration of how the parts should interoperate to meet the functional requirements. The deliverable is a document that lists the specific system requireemnts.

Question 39

What is Control Specifications Development?

Answer 39

Don’t retrofit security. Design it in.

Question 40

What is Design Review?

Answer 40

Designers determining exactly how the various parts of the system will interoperate and how the modular system structure will be laid out.

Question 41

What is Code Review Walk-Through?

Answer 41

Technical meetings usually involving only development personnel who walk through the actual code, looking for problems in the logical flow or other design/security flaws.

Question 42

What is System Test Review?

Answer 42

p 305

Question 43

What is Maintenance and Change Management?

Answer 43

Maintenance tasks once a system is operational that respond to changing operational, data processing, storage, and environmental requirements.

Question 44

List the Life Cycle Models

Answer 44

Waterfall
Spiral
Agile Software Development
Software Capability Maturity Model
IDEAL Model

Question 45

Describe the Waterfall Life Cycle Model

Answer 45

p306

Question 46

Describe the Spiral Life Cycle Model

Answer 46

p308

Question 47

Describe the Agile Software Development Model

Answer 47

p308

Question 48

Describe the Software Capability Maturity Model

Answer 48

p310

Question 49

Describe the IDEAL Life Cycle Model

Answer 49

p310

Question 50

What is a Gantt chart?

Answer 50

A type of bar chart that shows the interrelationships over time between projects and schedules.

Question 51

What is a PERT chart?

Answer 51

Program Evaluation Review Technique. A project scheduling tool used ot judge the size of a software product in deelopment and calculate the standard deviation for risk assesment. Calculates smallest, most likely, largest size for each component.

Question 52

What are the components of Change Management?

Answer 52

Request control
Change control
Release control

Question 53

Describe Request Control

Answer 53

.

Question 54

Describe Change Control

Answer 54

.

Question 55

Describe Release Control

Answer 55

.

Question 56

What are the components of configuration management?

Answer 56

Configuration Identification
Configuration Control
Configuration status accounting
Configuration Audit

Question 57

Describe Configuration Identification

Answer 57

.

Question 58

Describe Configuration Control

Answer 58

.

Question 59

Describe Confiugruation Status Accounting

Answer 59

.

Question 60

Describe Configuration Audit

Answer 60

.

Question 61

What are the three testing methods or ideologies?

Answer 61

White box
Black box
Grey Box

Question 62

White box testing?

Answer 62

.

Question 63

Grey box testing?

Answer 63

.

Question 64

Black box testing?

Answer 64

.

Question 65

What are the two categories of testing used to evaluate application security?

Answer 65

Static and dynamic testing.

Question 66

Describe static and dynamic testing

Answer 66

.

Question 67

What are the principles of Security Control Architecture?

Answer 67

Process Isolation
Protection Rings
Abstraction
Security Modes

Question 68

What is Protection Ring 0?

Answer 68

The ring where the OS itself resides. Supervisory or privilege mode. Validates all requests for access to hardware.

Question 69

What are Protection Rings 1 and 2?

Answer 69

These contain device drivers and other operating system services that provide higher level interfaces to system resources. In practice, most OSes don’t implement this.

Question 70

What is Protection Ring 3?

Answer 70

User applications and processes. User or protected mode. Direct access to system resources is not permitted.

Question 71

What are the DoD requirements for an operational reference monitor?

Answer 71

It must be tamperproof
It must always be invoked when a program or user requests access to resources
It must be small enough to be subject to analysis and tests, the completeness of which can be assured.

Question 72

What are the four security modes set out by the “light yellow book”, DoD CSC-STD-003-85?

Answer 72

Compartmented security mode
Dedicated security mode
Multilevel security mode
System-high security mode

Question 73

What is compartmented security mode?

Answer 73

All users must hve an appropriate clearance to access all information processed by the system, but don’t necessarily have a need to know all the information on the system. The system may process two or more types of compartmented information.

Question 74

What is dedicated security mode?

Answer 74

The system is authorized to process only a specific classification level at a time, and all users must have clearance and a need to know that information.

Question 75

What is multilevel security mode?

Answer 75

Systems in this mode are authorized to process information atmore than one level of security even when all system users do not have appropriate clearances or a need to know for all information on the system.

Question 76

What is system-high security mode?

Answer 76

Systems in this mode are authorized to process only information that all system users are cleared to read and have a valid need to know. Not trusted to maintain separations between security levels. All information must be processed as if it were the same level as the most highly classified information processed by the system.