Domain 3 - Security Engineering

Question 1

DES

Answer 1

Data Encryption Standard

• 64 bit blocks of text
• 64 bit key, 8 bits for parity
  
  • EFFECTIVE KEY LENGTH is 56 bits
  • TOTAL KEY LENGTH is 64 bits
• Since DES uses BLOCK size of 64, result is still 64 bits of encrypted data even though effective key size is 56 bits

Question 2

DES - EFFECTIVE key length

Answer 2

56 bits

Question 3

DES - TOTAL key length

Answer 3

64 bits

Question 4

AES

Answer 4

Advanced Encryption Standard

• Sequences of 128-bit blocks
• Cipher key can be 128, 192, 256 bits
• AES-128, AES-192, AES-256

Question 5

Bell-LaPadula

Answer 5

MANDATORY ACCESS CONTROL

• CONFIDENTIALITY
• Simple Security Property (NRU)
• • Security Property (NWD)
• Strong Tranquility Property
• Weak Tranquility Property

Question 6

Bell-LaPadula - Simple Security Property

Answer 6

No Read Up (NRU)

Question 7

Bell-LaPadula - * Security Property

Answer 7

No Write Down (NWD)

Question 8

Bell-LaPadula - Strong Tranquility Property

Answer 8

The security label will not change when the system is operating

Question 9

Bell-LaPadula - Weak Tranquility Property

Answer 9

The security label will not change in a way that conflicts with defined security properties

Question 10

Biba

Answer 10

INTEGRITY

• Simple Integrity Axiom
• • Integrity Axiom

Question 11

Biba - Simple Integrity Axiom

Answer 11

No Read Down (NRD)

Question 12

Biba - * Integrity Axiom

Answer 12

No Write Up (NWU)

Question 13

Clark-Wilson

Answer 13

INTEGRITY

• Separation of Duties (SoD)
• Well-formed transactions

Question 14

Clark-Wilson - “Access Control Triple”

Answer 14

TP - Transaction Procedure (well formed transaction)
CDI - Constrained Data Item (data that requires integrity)
UDI - Unconstrained Data Item (data that does not require integrity)
IVP - Integrity Verification Procedures (ensures data is kept in a valid state)

Question 15

Clark Wilson - Transaction Procedure

Answer 15

Well-formed transaction

Question 16

Clark Wilson - Constrained Data Item

Answer 16

Data that requires integrity

Question 17

Clark Wilson - Unconstrained Data Item

Answer 17

Data that does not require integrity

Question 18

Clark Wilson - Integrity Verification Procedures

Answer 18

Ensures that data is kept in a valid state

Question 19

Information Flow Model

Answer 19

Uses a lattice
Objects are labeled with security CLASSES
Information can flow either upward or at the same level
Both Bell-LaPadula AND Biba use the Information Flow Model

Question 20

Reading Down and Writing Up

Answer 20

Applies to Bell-LaPadula

NRU/NWD are the opposite of this

Question 21

State Machine Model

Answer 21

Mathematical model that groups all possible system occurrences
Occurrences are called STATES

Question 22

Chinese Wall Model

Answer 22

Designed to avoid CONFLICTS OF INTEREST

Question 23

Chinese Wall Model - CoI’s

Answer 23

CoI’s = Conflict of Interest categories

Question 24

Noninterference

Answer 24

Ensures data in different security domains remains separate from one another
Prevents covert channels
Each data access attempt is independent from others

Question 25

Take-Grant

Answer 25

Contains rules that govern the interactions between subjects and objects, including permissions subjects can grant to other subjects

Question 26

Take-Grant - Four Rules

Answer 26

Take, Grant, Create, Remove

Question 27

TCSEC

Answer 27

Trusted Computer System Evaluation Criteria (TCSEC)
NIST and NCSC (National Computer Security Center)
AKA Orange Book
DOES NOT address networks. Systems only

Question 28

TCSEC/Orange Book - Divisions

Answer 28

D: Minimal Protection
C: Discretionary Protection (C1, C2)
B: Mandatory Protection (B1, B2, B3)
A: Verified Protection (A1)

Question 29

TNI/Red Book

Answer 29

Trusted Network Interpretation

Brings TCSEC concepts to network systems

Question 30

ITSEC

Answer 30

European Information Technology Security Evaluation Criteria (ITSEC)
European version of the Orange Book

Question 31

Information Common Criteria

Answer 31

Successor to ITSEC
“Target of Evaluation” and “Security Target”
PRIMARY OBJECTIVE: Eliminate known vulnerabilities of the target for testing

Question 32

Layering

Answer 32

Separates hardware and software functionality into modular tiers
One layer is not directly affected by a change to another

Question 33

Abstraction

Answer 33

Hides unnecessary details from the user

Makes processes LESS COMPLEX to ENHANCE security

Question 34

Security Domains

Answer 34

A list of objects that a subject is allowed to access
DOD - Confidential, Secret, Top Secret
Kernels - User mode, Kernel mode

Question 35

The Ring Model

Answer 35

Separates and protects domains (ex: kernel/user mode) from each other

Question 36

The Ring Model - Ring 0

Answer 36

Kernel - MOST trusted

Question 37

The Ring Model - Ring 1

Answer 37

Other OS components

Question 38

The Ring Model - Ring 2

Answer 38

Device Drivers

Question 39

The Ring Model - Ring 3

Answer 39

User - LEAST trusted

Question 40

The Ring Model - Ring -1

Answer 40

Hypervisor Mode

Question 41

DEP

Answer 41

Data Execution Prevention

• Can be enabled within hardware and/or software
• Attempts to ensure that memory locations not PRE-DEFINED to contain executable content will not have the ability to have code executed
• Protects against STACK/HEAP-based buffer overflows

Question 42

ASLR

Answer 42

Address Space Layout Randomization

- Makes memory addresses employed by the system less predictable

Question 43

CPU - Multitasking

Answer 43

Allows multiple tasks to run simultaneously on one CPU

Most modern OS’s support multitasking

Question 44

CPU - Multiprocessing

Answer 44

Runs multiple processes on multiple CPIs

Question 45

CPU - Multiprocessing - SMP

Answer 45

Symmetric Multiprocessing

- One operating system to manage all CPUs

Question 46

CPU - Multiprocessing - AMP

Answer 46

Asymmetric Multiprocessing

- One OS system image per CPU, acting as independent systems

Question 47

Swapping vs Paging

Answer 47

Swapping = copying ENTIRE process to or from disk
Paging = copying BLOCKS of memory to or from disk

Question 48

WORM (memory)

Answer 48

Write Once Read Many

Question 49

Infrastructure as a Service (IaaS)

Answer 49

Provides an entire virtualized OS

Customer configures from the OS on up

Question 50

Platform as a Service (PaaS)

Answer 50

Provides a pre-configured OS

Customer configures applications, then just uses the applications

Question 51

Software as a Service (SaaS)

Answer 51

Completely configured solution from the OS to the applications
think: O365, Dropbox, etc…

Question 52

Covert Storage Channel

Answer 52

Uses shared storage, such as a temporary directory, to allow two subjects to signal eachother

Question 53

Covert Timing Channel

Answer 53

Relies on the system clock to infer sensitive information

Question 54

Overt Channel

Answer 54

Opposite of a covert channel.

Authorized communication that complies with security policy

Question 55

Macro Virus

Answer 55

Written in a macro language

Question 56

Boot Sector Virus

Answer 56

Infects the boot sector of a PC

Ensures that the virus loads upon system startup

Question 57

Stealth Virus

Answer 57

hides itself from the OS and AV

Question 58

Polymorphic Virus

Answer 58

Changes its signature upon infection of a new system

Attempts to evade AV

Question 59

Multiparte Virus

Answer 59

Spreads via multiple vectors

Question 60

Server-side Attack

Answer 60

Launched directly from the attacker to a listening service

Question 61

Client-side Attack

Answer 61

User downloads malicious content

Firewalls often fail to prevent these attacks

Question 62

Client-side Attack Mitigations

Answer 62

Patching applications

User Awareness

Question 63

Server-Side Attack Mitigations

Answer 63

Firewalls
Patching
System hardening
Defense in depth

Question 64

Inference

Answer 64

There is a mystery to be solved
Lower level details provide CLUES to DEDUCE higher level information
POLYINSTANTIATION can help defend against inference

Question 65

Aggregation

Answer 65

Mathematical process
User asks every questions and receives every answer, then can derive restricted information
NO DEDUCTION IS REQUIRED (answer is given)

Question 66

Cryptology

Answer 66

The science of secure communication

Encompasses BOTH cryptography and cryptanalysis

Question 67

Cryptography

Answer 67

Creates messages whose meaning is hidden

Question 68

Cryptanalysis

Answer 68

The science of breaking encrypted messages

Question 69

Diffusion (encryption)

Answer 69

The order of the plaintext should be “diffused” in the ciphertext

Question 70

Confusion (encryption)

Answer 70

The relationship between the plain/ciphertext should be as confused (random) as possible

Question 71

Substitution (encryption)

Answer 71

Replaces one character for another

Provides CONFUSION

Question 72

Permutation (encryption)

Answer 72

Also called transposition

Provides diffusion by rearranging the characters of the plaintext, anagram style