Domain 3

Question 1

A security model that prevents a secret cleared subject from reading a top secret object. Also includes ‘no read up’ rule and focuses on protecting confidentiality

Answer 1

Bell-Lapadula

Question 2

Biba is a model that protects _____

Answer 2

integrity

Question 3

This security model is ‘no read down’ and ‘no write up’

Answer 3

BIba

Question 4

This security model protects integrity by requiring subjects to access objects via programs. It focuses on having well formed transactions and separation of duties and access triple

Answer 4

Clark-Wilson

Question 5

This security model is designed to avoid conflicts of interest by prohibiting one person from accessing multiple conflict of interest categories

Answer 5

Chinese Wall aka Brewer Nash

Question 6

A table that defines the access permissions that exist between specific subjects and objects

Answer 6

access control matrix

Question 7

A list of objects a subject is allowed to access

Answer 7

security domain

Question 8

Processes communicate between CPU rings via _____ which allows processes to communicate with the kernel and provide a window between the rings

Answer 8

system calls

Question 9

The ____ is the computer’s case that houses the computer’s internal electronic computer components ex: motherboard

Answer 9

system unit

Question 10

This part of the CPU performs mathematical calculations

Answer 10

ALU (arithmetic logic unit)

Question 11

The ALU is fed instructions by the ____ unit.

Answer 11

control

Question 12

What is the ‘fetch and execute’ (aka FDX) steps?

Answer 12

1. Fetch Instruction 1
2. Decode Instruction 1
3. Execute Instruction 1
4. Write (save) Result 1

Question 13

_____ combines multiple CPU steps into one process

Answer 13

pipelining

Question 14

A parent process can spawn additional child processes called ____

Answer 14

threads

Question 15

____ segmentation maps processes to specific memory locations

Answer 15

hardware

Question 16

_____ provides virtual address mapping between applications and hardware memory

Answer 16

virtual mapping

Question 17

____ uses virtual memory to to copy contents of primary memory (RAM) to secondary memory (CD)

Answer 17

Swapping

Question 18

This storage can be written to once and read many times

Answer 18

WORM (write once, read many)

Question 19

____ attempts to prevent code execution in memory locations that are not predefined to contain executable content

Answer 19

DEP (data execution prevention)

Question 20

____ makes software exploitation more difficult by randomizing memory addresses

Answer 20

ASLR (address space location randomization)

Question 21

____ mediates all access between subjects and objects and is ran by the kernel

Answer 21

reference monitor

Question 22

Malware that needs a host

Answer 22

virus

Question 23

Malware that self propogates

Answer 23

worm

Question 24

A neutral technology used to shrink the size of executables

Answer 24

packer

Question 25

____ are small pieces of mobile code embedded into web browsers that are executable and typically written in Java or ActiveX

Answer 25

Applets

Question 26

Database ____ allows two objects to have the same name. Ex: two rows have the same primary key but different data

Answer 26

polyinstantiation

Question 27

___ means the order of plaintext should be dispersed in the ciphertext

Answer 27

diffusion

Question 28

___ means that the relationship between the plaintext and the ciphertext should be as confused or random as possible

Answer 28

confusion

Question 29

___ replaces one character for another to provide confusion

Answer 29

substitution

Question 30

____ also called transposition provides diffusion by rearranging the characters of the plaintext.

Answer 30

permutation

Question 31

How long it will take to break a cryptosystem is called

Answer 31

work factor

Question 32

prolonged loss of power

Answer 32

blackout

Question 33

prolonged low voltage

Answer 33

brownout

Question 34

short loss of power

Answer 34

fault

Question 35

prolonged high voltage

Answer 35

surge

Question 36

temporary high voltage

Answer 36

spike

Question 37

temporary low voltage

Answer 37

sag

Question 38

This person ensures that all personnel safely evacuate the building in the event of an emergency or drill

Answer 38

safety warden

Question 39

This person assures that all personnel are accounted for at the emergency meeting point

Answer 39

meeting point leader

Question 40

Class B fires should be extinguished with

Answer 40

Gas or soda acid. never use water

Question 41

Class C fires should be extinguished with

Answer 41

Gas. never water or soda acid

Question 42

Class D fires should be extinguished with

Answer 42

Dry powder

Question 43

Class K fires should be extinguished with

Answer 43

Wet chemicals

Question 44

___ is an enterprise security architecture

Answer 44

Zachman

Question 45

defines a risk driven Enterprise security architecture model that is

Answer 45

Sabsa

Question 46

Enterprise security architecture that helps break down organizations to integrate security

Answer 46

TOGAF

Question 47

defines different layers of confidentiality or integrity and then defined rules about
what can be read or written between the layers to maintain confidentiality or integrity

Answer 47

Lattice based

Question 48

Bell-LaPadula and Biba combined

Answer 48

Lipner

Question 49

Graham Denning and Harrison Ruzzo Ullman are ___ based models

Answer 49

rule

Question 50

Provides best practice information for information systems and defines the controls

Answer 50

ISO 27001

Question 51

Provides implementation of ISO 27001 controls

Answer 51

ISO 27002

Question 52

Security and privacy Controls for US and federal agencies

Answer 52

NIST 800-53

Question 53

Useful for IT audit and assurance work created by IT auditors

Answer 53

COBIT

Question 54

Focuses on financial fraud

Answer 54

COSO

Question 55

Defines standards and best practices for delivering IT services aligned with business goals and objectives

Answer 55

ITIL

Question 56

Provides structured process for managing security and privacy

Answer 56

NIST 800-37

Question 57

What are the 6 RMF steps?

Answer 57

security categorization
security control selection
security control implementation
security control assessment
information system authorization
and security control monitoring

Question 58

True or False

ISO 31000, COSO, ISACA Risk IT are frameworks based on risk management

Answer 58

True

Question 59

The older criteria evaluation that certifies single boxes only and verifies confidentiality

Answer 59

TC SEC (orange book)

Question 60

The older criteria evaluation that certifies single boxes only and verifies confidentiality

Answer 60

TC SEC (orange book)

Question 61

Collection of all protection mechanisms to protect a system

Answer 61

TCB (trusted computing base)

Question 62

___ storage is volatile

Answer 62

primary

Question 63

____ storage is non-volatile

Answer 63

secondary

Question 64

When an application checks the state of a resource before using that resource

Answer 64

TOCTOU (time of check, time of use) aka race conditions

Question 65

How to mitigate TOCTOU?

Answer 65

Increase frequency of re-authentication

Question 66

____ blocks emanation from a system

Answer 66

Shielding (TEMPEST)

Question 67

Placing high value systems in a physically secured zone

Answer 67

control zones

Question 68

How to prevent against improper platform usage?

Answer 68

secure coding and configuration management

Question 69

How to prevent against insecure data storage? (mobile)

Answer 69

dont store sensitive data on a mobile device

Question 70

How to prevent against insecure communication?

Answer 70

encryption and authentication with certificates

Question 71

most common form of cross site scripting?

Answer 71

reflected

Question 72

Who is the target of attack in XSS attacks?

Answer 72

The client (the users browser)

Question 73

Who is the target of attack in cross site request forgery attacks?

Answer 73

the server

Question 74

Who is ultimately responsible for the protection of any data and services they outsource to the cloud?

Answer 74

the customer

Question 75

A protocol that provides both authentication and authorization in federated access

Answer 75

SAML

Question 76

56 bit keys, 64 bit block, 16 round

Answer 76

DES

Question 77

Uses 3 56 bit keys (168 bits)

Answer 77

3DES

Question 78

128, 192, 256 key lengths, 128 bit blocks

Answer 78

AES

Question 79

CAST 128 is

Answer 79

symmetric, block

Question 80

SAFER is

Answer 80

symmetric, block

Question 81

RC4 is

Answer 81

a symmetric stream cipher

Question 82

These crypto algorithms rely on discrete log

Answer 82

diffie hellmann, elliptic curve, el gamal, DSA

ECC is very efficient

Question 83

Which role in the CA issues certificates?

Answer 83

issuing ca

Question 84

This algorithm uses factoring

Answer 84

RSA

Question 85

Torturing someone to get the key

Answer 85

rubber hose

Question 86

clean filtered air will be blown into
the data center at slightly above ambient pressure thus ______ the data center

Answer 86

positively pressurizing

Question 86

clean filtered air will be blown into
the data center at slightly above ambient pressure thus ______ the data center

Answer 86

positively pressurizing

Question 87

which fire system will detect a fire as early as possible?

Answer 87

ionization

Question 88

Class C fire extinguishers use ___ to suppress fires

Answer 88

co2