Question 1

Confidentially is provided if the data cannot be read.

Accepted Answer

Confidentially is provided if the data cannot be read either through access controls or encryption.

Question 2

Integrity is provided if the data cannot be read.

Accepted Answer

Integrity is provided if you can be ensured that the data has not changed in any way.

Question 3

Availability describes what percentage of the time the resource or the date is available.

Accepted Answer

Availability refers to the proportion of time a system or resource is operational and accessible when required for use, typically expressed as a percentage of total time.

Question 4

A Stakeholder is an individual with interests or concerns that should be considered.

Accepted Answer

A stakeholder is indeed any individual or group who has an interest in or is affected by a project, decision, or outcome, and their concerns should be considered in the project's planning and execution phases.

Question 5

An embedded system is a standalone piece of software.

Accepted Answer

An embedded system is a piece of software built into a larger piece of software.

Question 6

Boundary Control Services are responsible for placing various components in security zones.

Accepted Answer

Boundary Control Services are indeed responsible for placing various components in security zones as part of their function to manage and enforce security policies at the boundaries of these zones, ensuring that only authorized access is allowed and that the integrity of the zones is maintained.

Question 7

When a CPU gets an instruction from memory, the process is called fetching.

Accepted Answer

Fetching is the process where the CPU retrieves an instruction from memory to be executed.

Question 8

Flash memory is a type RAM.

Accepted Answer

Flash memory is a type of non-volatile storage that can be electronically erased and reprogrammed, unlike RAM, which is volatile and loses its data when power is removed.

Question 9

Implied addressing addresses the entire primary memory space.

Accepted Answer

Implied addressing refers to registers usually contained inside the CPU.

Question 10

In asymmetric multiprocessing mode, a processor is dedicated to a specific process or application.

Accepted Answer

In asymmetric multiprocessing (AMP), processors are assigned specific tasks or applications, with one main processor controlling the system and the others handling assigned tasks, leading to a dedicated processing approach for specific processes or applications.

Question 11

Which if the following is a system component that enforces access controls on an object?&#10;A) Security Perimeter&#10;B) Reference Monitor&#10;C) Security Kernel&#10;D) TCB

Accepted Answer

The answer of Which if the following is a system...

Question 12

Which framework is a two-dimensional model that intersects communication interrogatives (what, why, where, and so on) with various viewpoints (planner owner, designer, and such)?&#10;A) Zachmann&#10;B) TOGAF&#10;C) ITIL&#10;D) ISO/IEC 27000 Series

Accepted Answer

The answer of Which framework is a two-dimensional model that...

Question 13

Which of the following occurs when someone has access to information at one level that allows them to infer information about another level?&#10;A) Polymorphism&#10;B) Inference&#10;C) Contamination&#10;D) Escalation

Accepted Answer

The answer of Which of the following occurs when someone...

Question 14

Which Bell-LaPadula rule says a subject cannot read data located at a higher security level than that possessed by the subject?&#10;A) Simple security rule&#10;B) *- property rule&#10;C) Strong star property rule&#10;D) Weak star property rule

Accepted Answer

The answer of Which Bell-LaPadula rule says a subject cannot...

Question 15

Which security mode allows two or more classification levels of information to be processed at the same time?&#10;A) Dedicated&#10;B) System High&#10;C) Compartmented&#10;D) Multilevel

Accepted Answer

The answer of Which security mode allows two or more...

Question 16

Which book in the Rainbow series addresses network security?&#10;A) Red Book&#10;B) Orange Book&#10;C) Beige Book&#10;D) Green Book

Accepted Answer

The answer of Which book in the Rainbow series addresses...

Question 17

C1 is an evaluation level in which rating system?&#10;A) TSEC&#10;B) ITSEC&#10;C) Common Criteria&#10;D) Red Book

Accepted Answer

The answer of C1 is an evaluation level in which...

Question 18

Which rating system uses a concept called a protection profile?&#10;A) TSEC&#10;B) ITSEC&#10;C) Common Criteria&#10;D) Red Book

Accepted Answer

The answer of Which rating system uses a concept called...

Question 19

Which type accreditation evaluates an application or support system?&#10;A) Type accreditation&#10;B) System accreditation&#10;C) Site accreditation&#10;D) Simple accreditation

Accepted Answer

The answer of Which type accreditation evaluates an application or...

Question 20

Which of the following is sometimes called a backdoor?&#10;A) Maintenance hook&#10;B) Padded cell&#10;C) SAML&#10;D) Reference monitor

Accepted Answer

The answer of Which of the following is sometimes called...

Deck 7: Security Architecture and Design