CISSP Test 05

Quiz Summary

0 of 25 questions completed

Questions:

You have already completed the quiz before. Hence you can not start it again.

Quiz is loading…

You must sign in or sign up to start the quiz.

You must first complete the following:

Results

Quiz complete. Results are being recorded.

Results

0 of 25 questions answered correctly

Your time:

You have reached 0 of 0 point(s), (0)

Answered
Review

Question 1 of 25

1. Question
1. What flaw creates buffer overflows?
- A. Application executing in privileged mode
- B. Inadequate memory segmentation
- C. Inadequate protection ring use
- D. Insufficient bounds checking
Correct

Incorrect
Question 2 of 25

2. Question
2. The operating system performs all except which of the following tasks?
- A. Memory allocation
- B. Input and output tasks
- C. Resource allocation
- D. User access to database views
Correct

Incorrect
Question 3 of 25

3. Question
3. If an operating system allows sequential use of an object without refreshing it,
what security issue can arise?
- A. Disclosure of residual data
- B. Unauthorized access to privileged processes
- C. Data leakage through covert channels
- D. Compromise of the execution domain
Correct

Incorrect
Question 4 of 25

4. Question
4. What is the final step in authorizing a system for use in an environment?
- A. Certification
- B. Security evaluation and rating
- C. Accreditation
- D. Verification
Correct

Incorrect
Question 5 of 25

5. Question
5. What feature enables code to be executed without the usual security checks?
- A. Temporal isolation
- B. Maintenance hook
- C. Race conditions
- D. Process multiplexing
Correct

Incorrect
Question 6 of 25

6. Question
6. If a component fails, a system should be designed to do which of the
following?
- A. Change to a protected execution domain
- B. Change to a problem state
- C. Change to a more secure state
- D. Release all data held in volatile memory
Correct

Incorrect
Question 7 of 25

7. Question
7. What security advantage does firmware have over software?
- A. It is difficult to modify without physical access.
- B. It requires a smaller memory segment.
- C. It does not need to enforce the security policy.
- D. It is easier to reprogram.
Correct

Incorrect
Question 8 of 25

8. Question
8. Which is the first level of the Orange Book that requires classification labeling
of data?
- A. B3
- B. B2
- C. B1
- D. C2
Correct

Incorrect
Question 9 of 25

9. Question
9. Which of the following best describes the security kernel?
- A. A software component that monitors activity and writes security events to an audit log
- B. A software component that determines if a user is authorized to perform a requested operation
- C. A software component that isolates processes and separates privileged and user modes
- D. A software component that works in the center protection ring and provides interfaces between trusted and untrusted objects
Correct

Incorrect
Question 10 of 25

10. Question
10. The Information Technology Security Evaluation Criteria was developed for which of the following?
- A. International use
- B. U.S. use
- C. European use
- D. Global use
Correct

Incorrect
Question 11 of 25

11. Question
11. A security kernel contains which of the following?
- A. Software, hardware, and firmware
- B. Software, hardware, and system design
- C. Security policy, protection mechanisms, and software
- D. Security policy, protection mechanisms, and system design
Correct

Incorrect
Question 12 of 25

12. Question
12. What is the purpose of base and limit registers?
- A. Countermeasure buffer overflows
- B. Time sharing of system resources, mainly the CPU
- C. Process isolation
- D. TCB enforcement
Correct

Incorrect
Question 13 of 25

13. Question
13. A guard is commonly used with a classified system. What is the main purpose of implementing and using a guard?
- A. To ensure that less trusted systems only receive acknowledgments and not messages
- B. To ensure proper information flow
- C. To ensure that less trusted and more trusted systems have open architectures and interoperability
- D. To allow multilevel and dedicated mode systems to communicate
Correct

Incorrect
Question 14 of 25

14. Question
14. The trusted computing base (TCB) controls which of the following?
- A. All trusted processes and software components
- B. All trusted security policies and implementation mechanisms
- C. All trusted software and design mechanisms
- D. All trusted software and hardware components
Correct

Incorrect
Question 15 of 25

15. Question
15. What is the imaginary boundary that separates components that maintain security from components that are not security related?
- A. Reference monitor
- B. Security kernel
- C. Security perimeter
- D. Security policy
Correct

Incorrect
Question 16 of 25

16. Question
16. Which model deals only with confidentiality?
- A. Bell-LaPadula
- B. Clark-Wilson
- C. Biba
- D. Reference monitor
Correct

Incorrect
Question 17 of 25

17. Question
17. What is the best description of a security kernel from a security point of view?
- A. Reference monitor
- B. Resource manager
- C. Memory mapper
- D. Security perimeter
Correct

Incorrect
Question 18 of 25

18. Question
18. When is the security of a system most effective and economical?
- A. When it is designed and implemented from the beginning of the development of the system
- B. When it is designed and implemented as a secure and trusted front end
- C. When it is customized to fight specific types of attacks
- D. When the system is optimized before security is added
Correct

Incorrect
Question 19 of 25

19. Question
19. In secure computing systems, why is there a logical form of separation used between processes?
- A. Processes are contained within their own security domains so each does not make unauthorized accesses to other processes or their resources.
- B. Processes are contained within their own security perimeter so they can only access protection levels above them.
- C. Processes are contained within their own security perimeter so they can only access protection levels equal to them.
- D. The separation is hardware and not logical in nature.
Correct

Incorrect
Question 20 of 25

20. Question
20. What type of attack is taking place when a higher-level subject writes data to a storage area and a lower-level subject reads it?
- A. TOC/TOU
- B. Covert storage attack
- C. Covert timing attack
- D. Buffer overflow
Correct

Incorrect
Question 21 of 25

21. Question
21. What type of rating does the Common Criteria give to products?
- A. PP
- B. EPL
- C. EAL
- D. A–D
Correct

Incorrect
Question 22 of 25

22. Question
22. Which best describes the *-integrity axiom?
- A. No write up in the Biba model
- B. No read down in the Biba model
- C. No write down in the Bell-LaPadula model
- D. No read up in the Bell-LaPadula model
Correct

Incorrect
Question 23 of 25

23. Question
23. Which best describes the simple security rule?
- A. No write up in the Biba model
- B. No read down in the Biba model
- C. No write down in the Bell-LaPadula model
- D. No read up in the Bell-LaPadula model
Correct

Incorrect
Question 24 of 25

24. Question
24. Which of the following was the first mathematical model of a multilevel security policy used to define the concepts of a security state and mode of access, and to outline rules of access?
- A. Biba
- B. Bell-LaPadula
- C. Clark-Wilson
- D. State machine
Correct

Incorrect
Question 25 of 25

25. Question
25. Which of the following is a true statement pertaining to memory addressing?
- A. The CPU uses absolute addresses. Applications use logical addresses. Relative addresses are based on a known address and an offset value.
- B. The CPU uses logical addresses. Applications use absolute addresses. Relative addresses are based on a known address and an offset value.
- C. The CPU uses absolute addresses. Applications use relative addresses. Logical addresses are based on a known address and an offset value.
- D. The CPU uses absolute addresses. Applications use logical addresses. Absolute addresses are based on a known address and an offset value.
Correct

Incorrect

CISSP TestPrep

Quiz Summary

Information

Results

Results

Categories

1. Question

2. Question

3. Question

4. Question

5. Question

6. Question

7. Question

8. Question

9. Question

10. Question

11. Question

12. Question

13. Question

14. Question

15. Question

16. Question

17. Question

18. Question

19. Question

20. Question

21. Question

22. Question

23. Question

24. Question

25. Question