Domain 6 - Security Architecture And Design

Question 1

Is a volatile hardware memory that loses integrity after loss of power

Answer 1

Random Access Memory or RAM

Question 2

It mediates all access between objects and subjects. It enforces the system’s security policy, such as preventing normal user from writing to a restricted file such as e system password file.

Answer 2

Reference Monitor

Question 3

Is a non volatile memory that maintains integrity after loss of power

Answer 3

Read Only Memory or ROM

Question 4

Trusted Computer System Evaluation Criteria is also known as ——

Answer 4

The Orange book

Question 5

The security relevant portions of computer system

Answer 5

Trusted Computing Base - TCB

Question 6

An interface between computer hardware and the operating system, allowing multiple guest operating systems to run on one host computer

Answer 6

Virtualisation

Question 7

This separates hardware and software functionality into modular tiers

Answer 7

Layering

Question 8

Complexity is the enemy of security; the more complex the process is, the less secure it is. Computers are tremendously complex machine, ——- provides a way to manage that complexity and hides unnecessary details from the user.

Answer 8

Abstraction

Question 9

Is the list of objects a subject is allowed to access.

Answer 9

Security Domain

Question 10

What are the two domains of a Kernel?

Answer 10

1. Kernel mode

2. User mode

Question 11

It is where the Kernel lives allowing low level access to memory, CPU, disk etc. It is the most trusted and powerful part of the system.

Answer 11

Kernel mode

Question 12

It is where user accounts and their processes lives.

Answer 12

User mode

Question 13

Is a form of CPU hardware layering that separates and protects domains (such as Kernel and user mode) from each other

Answer 13

Ring model

Question 14

What are the four theoretical rings of the ring model?

Answer 14

Ring 0 - Kernel
Ring 1 - other OS components that do not fit ring 0
Ring 2 - Device drivers
Ring 3 - User applications

Question 15

Processes communicates between the rings via —-, which allow processes to communicate with the kernel and provide a window between the rings

Answer 15

System calls

Question 16

Is a system that uses open hardware standards, using standard components from variety of vendors

Answer 16

Open system

Question 17

Is a system that uses proprietary hardware or software

Answer 17

Closed system

Question 18

Is the primary communicant channel on a computer system

Answer 18

Computer bus

Question 19

Also called the Memory Controller Hub (MCH) which connects. He CPU to RAM and video memory

Answer 19

Northbridge

Question 20

Also called the IO Controller Hub (ICH) which connects input/output devices such as disk, keyboard, mouse etc…

Answer 20

Southbridge

Question 21

Is a part of CPU that performs mathematical calculations

Answer 21

Arithmetic Logic Unit (ALU)

Question 22

Part of the CPU that sends instructions to the ALU

Answer 22

Control Unit

Question 23

Combines multiple steps into one combined process, allowing simultaneous fetch, decode, a d write steps for different instructions

Answer 23

Pipelining

Question 24

This indicates that an asynchronous event has occurred. It is a form of hardware interrupt that cause the CPU to stop processing its current task, save the state, and began processing a new request

Answer 24

CPU interrupts

Question 25

—- is an executable program and its associated data loaded and running in memory

Answer 25

Process

Question 26

This allow multiple tasks (heavy weight processes) to run simultaneously on one CPU

Answer 26

Multitasking

Question 27

This runs multiple processes on multiple CPU

Answer 27

Multiprocessing

Question 28

Is designed to recover a system by rebooting after critical processes hangs or crash

Answer 28

Watchdog timer

Question 29

What are the two forms of CPU designs?

Answer 29

1. Complex Instruction Set Computer - CISC

2. Reduced Instruction Set Computer - RISC

Question 30

Is a form of CPU design that uses a large set of complex machine language instructions

Answer 30

CISC

Question 31

Is a form of CPU design that uses reduced set of simpler intructions.

Answer 31

RISC

Question 32

Is the fastest memory on the system required to keep up with the CPU as it fetches and executes intructions.

Answer 32

Cache memory

Question 33

Is a logical control that attempts to prevent one process from interfering with another

Answer 33

Process Isolation

Question 34

Techniques used to provide process isolation

Answer 34

1. Virtual Memory
2. Object encapsulation
3. Time multiplexing

Question 35

This takes process isolation one step further by mapping processes to specific memory locations.

Answer 35

Hardware Segmentation

Question 36

This provides virtual mapping between applications and hardware memory

Answer 36

Virtual Memory

Question 37

This uses virtual memory to copy contents in primary memory (RAM) to or from secondary memory ( not directly addressable by the CPU, on disk)

Answer 37

Swapping

Question 38

T or F. Flash memory drives are disk drives.

Answer 38

False

Question 39

T or F. Secure destruction method used for magnetic drives, such as degaussing may not work with flash drives.

Answer 39

True

Question 40

—- are energy that escape an electronic system, and which may be remotely monitored under certain circumstances.

Answer 40

Emanations

Question 41

Is any communication that violates security policy.

Answer 41

Covert channel

Question 42

Is an authorised communication that complies with security policy.

Answer 42

Overt channel

Question 43

Two specific types off covert channel

Answer 43

1. Storage channel

2. Timing channels

Question 44

Is a covert channel that uses shared storage such as temporary directory to allow two subjects to signal each other.

Answer 44

Covert storage channel

Question 45

Is a covert channel that relies on the system clock to infer sensitive information.

Answer 45

Covert Timing channel

Question 46

—— can occur when a programmer fails to perform bounds checking

Answer 46

Buffer Overflow

Question 47

An attack where attackers attempts to alter condition after it has been checked by the Operating System, but before it is used. It is an example of state attack where attacker capitalises on a change in operating system

Answer 47

Time of check/Time of use - TOCTOU or race conditions

Question 48

Is a shortcut in a system that allows a user to bypass security checks (such username/password authentication ) to login

Answer 48

Backdoor

Question 49

Is a type of backdoor typically shortcuts installed by system designers/programmers to allow developers to bypass normal system checks during development, such as requiring users to authenticate.

Answer 49

Maintenance Hook

Question 50

Is the generic term for any type of software that attacks an application of system

Answer 50

Malicious code or Malware

Question 51

—– are malware that does not spread automatically and require a carrier such as human

Answer 51

Computer Viruses

Question 52

—– is a virus written in macro language such as MS office macros

Answer 52

Macro virus

Question 53

Is a virus that infects the boot sector of a PC, which ensures the virus loads upon system startup

Answer 53

Boot Sector virus

Question 54

Is a virus that hides itself from the OS and other protective software, such AV software

Answer 54

Stealth virus

Question 55

Is a virus that change its signature upon infection of new system, attempting to evade signature based anti virus software

Answer 55

Polymorphic virus

Question 56

Is a virus that spreads via multiple vectors

Answer 56

Multipartite virus

Question 57

—— -are malware that self propagates

Answer 57

Worm

Question 58

Is a malware that performs two functions: one benign (such as a game), and one malicious

Answer 58

Trojans

Question 59

Is a malware which replaces portions of the kernel and/or operating system

Answer 59

Rootkits

Question 60

This provides run time executables . The original exe is compressed and a small decompresser is prepended to the EXE.

Answer 60

Packers

Question 61

Is a malicious program that is triggered when a logical condition is met, such as after a number of transactions have been processed, or on a specific date

Answer 61

Logic bombs

Question 62

An attack that is launched directly from an attacker (the client) to a listening service

Answer 62

Server (service) side attacks

Question 63

This occurs when a user downloads malicious content. Attacks initiate from the victim who downloads contents from the attacker

Answer 63

Client side attack

Question 64

Is a small piece of mobile code that are imbedded in other software such as web browser. Primary security concern is this are downloaded from servers and run locally.

Answer 64

Applets

Question 65

Is an object oriented language used not only to write applets, but also as a general purpose programming language. Applets written run in a sandbox which segregates the code for the OS thus preventing malicious applet to access file system

Answer 65

Java

Question 66

Is a Microsoft functional equivalent of java applets but use digital certificate instead of a sandbox to provide security .

Answer 66

ActiveX

Question 67

—– allows two difference objects have the same name. In databases, it means two rows may have the same primary key but different data

Answer 67

Polyinstantiation (multiple instances)

Question 68

This occur when a user is able to use lower level access to learn restricted information. It requires deduction; there is a mystery to be solved and lower level clues are available. One example is when there are plenty of cars and pizza delivery in the White House in the middle of the night

Answer 68

Inference

Question 69

This searches large amounts of data to determine patterns that would otherwise get ‘lost in the noise’.

Answer 69

Data Mining

Question 70

This occurs when a subject reads an object at lower sensitivity level such as top secret subject reading a secret object

Answer 70

Reading down

Question 71

This occurs when a subject has information and passes that information up to an object which has higher sensitivity than the subject has permission to access

Answer 71

Writing up

Question 72

Is a mathematical model that groups all possible system occurrences, called states. Every possible state of the system is evaluated, showing all possible interactions between subjects and objects. The system is proven to be secure if all the state is proven to be secure.

Answer 72

State Machine Model

Question 73

——– is a security model developed by US Dept of Defense focusing on maintaining the confidentiality of objects. It means not allowing users at lower security levels to access objects at higher security level. No Read-up and no write down

Answer 73

Bell-LaPadula

Question 74

What are the two properties/rule that operates Bell LaPadula?

Answer 74

1. Simple Security property

2. Star Property

Question 75

A security property that states “no read up”. A subject at a specific classification level cannot read an object at a higher classification level.

Answer 75

Simple Security Property

Question 76

Is a security property that is “no write down”. A subject at a higher classification level cannot write to a lower classification level.

Answer 76

• Security Property

Question 77

Within the Bell-LaPadula access control model, what are the two properties which dictates how the system will issue security labels for objects.

Answer 77

1. The Strong Tranquility property

2. The Weak Tranquility property

Question 78

In Bell-LaPadula access control model, this states that security models will not change while the system is is operating

Answer 78

Strong Tranquility Property

Question 79

In Bell-LaPadula access control model, this states that security models will not change in a way that conflicts with defined security properties

Answer 79

Weak Tranquility Model

Question 80

—— is a security access control model that defines upper (least Upper Bound - LUB) and lower access limits ( Greatest Lower Bound - GLB) . This allows reaching higher and lower data classification based on the need of the subject, label of the object, and the role of the subject.

Answer 80

Lattice Based Access Control

Question 81

Is a security model focusing on integrity that protects integrity by requiring subjects to access objects via programs.

Answer 81

Clark-Wilson

Question 82

This security model focuses on integrity of information at the highest level by using two primary rules :

No read down
No write up

Answer 82

Biba model.

Question 83

What are the two primary rules of BIBA model?

Answer 83

1. Simple Integrity Axiom

2. * Integrity Axiom

Question 84

In BIBA security model, this specifies that a subject at specific classification level cannot read data at a lower classification - thus “no read down”. This prevents subject from accessing information at a lower integrity level. This protects integrity by preventing bad information from moving up from lower integrity levels.

Answer 84

Simple Integrity Axiom

Question 85

In BIBA model, at subject at a specific classification level cannot write to data at a higher classification. “No write up”. This protects integrity by preventing bad information from moving up to a higher integrity level

Answer 85

• Integrity Axiom