Domain 3 - Security Model Types and Concepts

Question 1

Security Model

Answer 1

An abstraction of a security policy that computers can follow

Question 2

Confinement

Answer 2

Process confinement only allows a process to access certain memory locations; sometimes called sandboxing; some systems will alert on attempts to violate confinement or even terminate the process

Question 3

Bounds

Answer 3

The limits (physical or logical) to which is process is confined

Question 4

Isolation

Answer 4

The product of process confinement within bounds

Question 5

State Machine Models

Answer 5

Check each of the possible system state and ensure the proper security relationship between objects and subjects in each state.

Question 6

Multilevel Lattice Models

Answer 6

Allocate each security subject a security label defining the highest and lowest boundaries of the subject’s access to the system. Enforce controls to all objects by dividing them into levels known as lattices.

Question 7

Matrix Based Models

Answer 7

Arrange tables known as matrix which includes subjects and objects defining what actions subjects can take upon another object.

Question 8

Noninterference Models

Answer 8

The actions of a high subject should not affect the actions of a low subject, or even be noticed by a low subject, so as to avoid inferences and the creation of covert channels

Question 9

Information Flow Models

Answer 9

These models allow all authorized information flows and prevent all unauthorized information flows