Cyber8836 Trusted OS Policy

Question 1

What is the RVM

Answer 1

The reference validation Mechanism

Question 2

What is meant by a trusted OS?

Answer 2

A trusted OS is an OS that is responsible for policy enforcement.

Question 3

In respect to Trusted OS what is Policy?

Answer 3

A set of well defined, consistent, implementable rules that have been clearly expressed.

Question 4

What is mandatory access control (MAC)?

Answer 4

Access control mandated based on characteristics of the object and the user in the form of labels.

Question 5

What is Discretionary Access Control (DAC)?

Answer 5

Access control based on the owners discretion, normal ACLS.

Question 6

How to you address the scale of access matrixes?

Answer 6

Role based Access Control addresses the scale of access matrixes, by creating roles.

Question 7

What are the access control primitives?

Answer 7

RBAC - Roles assigned to people
ABAC - Attributes assigned to users, objects, environment, compared.
CBAC - People in a photo, Context based.

Question 8

What is sensitivity?

Answer 8

The equivalent of classification.
Unclass
confedential
secret
TS

Question 9

What are compartments?

Answer 9

Special subset of records.

Question 10

What does a subjects label specify?

Answer 10

Their Clearance.

Question 11

What does a company group belong to?

Answer 11

A company group belongs to a unique conflict class.

Question 12

What is the Chinese Wall access control policy?

Answer 12

A subject S can have access to objects from one and only one company group within a conflict class.

Question 13

What is the Clark Wilson Policy spec?

Answer 13

Users/roles (U)
Constrained Data Items (CDI)
Transformation procecedures (TP)
A user performs only authorized TP on CDI it has access to.

it is an application oriented policy model