cissp方面的文档.docVIP

SECURITY ARCHITECTURE MODELS 1. Security of an automated information system is most effective and economical if the system is a. optimized prior to addition of security. b. customized to meet the specific security threat. c. subjected to intense security testing. d. designed originally to provide the necessary security. Answer: d. 2. A mechanism that enforces the authorized access relationships between subjects and objects is known as a. the reference monitor. b. discretionary access control. c. trusted kernel. d. mandatory access control. Answer: a. Reference: HISM, 1998, pg 93-94 Discussion: Answer a - correct Answer b - wrong, access controls not based on policy or need to know is DAC. Answer c - wrong, a trusted kernel is the hardware, firmware, software elements of a trusted computing base that implements the reference monitor concept. Answer d - MAC establishes the relationships between subjects and objects. 3. What is the name of the first mathematical model of a multi-level security policy used to define the concept of a secure state, the modes of access, and rules for granting access? a. Clark and Wilson Model b. Harrison-Ruzzo-Ullman Model c. Rivest and Shamir Model d. Bell-LaPadula Model Answer: d. Reference: Secure Computing, Rita C. Summers, pg 121. Discussion: Answer a - wrong, a model for describing integrity requirements. Answer b - wrong, a model that defines a protection system as a set of generic rights a set of common data sets. Answer c - wrong, not a model but a public key encryption method. Answer d - correct 4. What is the name of the imaginary boundary that separates the components for maintaining security from the nonsecurity relevant components? a. Security kernel b. Security model c. Security perimeter d. Security session Answer: c. Reference: Secure Computing, Rita Summers, pg. 254. Discussion: Answer a - wrong, it’s the hardware, software, etc., elements of a trusted computing base that implements the reference monitor