CISSP #1

Question 1

Access control: directive

Answer 1

used to define appropriate use and behavior within an organization with regard to that organization’s systems and services.

Question 2

Access control: deterrent

Answer 2

used to dissuade potential attacks

Question 3

Access control: preventive

Answer 3

used to stop potential attacks by preventing users from performing specific actions or functions on a system.

Question 4

Access control: compensating

Answer 4

used to supplement directive access controls, such as company policy.

Question 5

Access control: detective

Answer 5

used to monitor or send alerts about malicious activity.

Question 6

Access control: corrective

Answer 6

used to repair damage caused by malicious events.

Question 7

Access control: recovery

Answer 7

used to restore a system to a normal state after malicious activity has occurred.

Question 8

Brownout

Answer 8

long period of low voltage

Question 9

Sag

Answer 9

short period of low voltage

Question 10

blackout

Answer 10

long period of power loss

Question 11

fault

Answer 11

short period of power loss

Question 12

Policies

Answer 12

Provide a high-level overview of the company’s security posture, creating the basic framework upon which a company’s security program is based. Contains mandatory directives an employee must follow.

Question 13

Standards

Answer 13

Define the technical aspects of a security program, including hardware and software. These are mandatory things.

Question 14

Procedures

Answer 14

Low-level guides that explain how to accomplish a task

Question 15

Baselines

Answer 15

Minimum level of security

Question 16

Guidelines

Answer 16

Provide helpful bits of advice to employees

Question 17

Quartz Lamps

Answer 17

high wattage and immediately cast a bright white light. most appropriate for security lighting that requires quick and near-daylight brightness.

Question 18

Mercury vapor lights

Answer 18

slow to full brightness. typically for continuous or emergency security lighting.

Question 19

Sodium vapor lights

Answer 19

emit a soft yellow light and are best used in foggy conditions

Question 20

Fluorescent lights

Answer 20

sensitive to temperature and are best suited for indoor uses

Question 21

Configuration management steps:

Answer 21

1. Baselining 2. Patch management 3. Vulnerability management

Question 22

Change management steps:

Answer 22

1. Requests 2. Impact assessment 3. Approval/Disapproval 4. Build and test 5. Notification 6. Implementation 7. Validation 8. Documentation

Question 23

Bell-Lapadula model

Answer 23

Confidentiality; uses Simple Security Property and the * security property.

Question 24

Simple security property

Answer 24

no read up policy

Question 25

* security property

Answer 25

no write down policy

Question 26

Biba model

Answer 26

Integrity; uses Simple Integrity Axiom and the * Integrity Axiom

Question 27

Simple integrity axiom

Answer 27

no read down policy

Question 28

* integrity axiom

Answer 28

no write up policy

Question 29

Clark-Wilson model

Answer 29

Integrity; requires subjects to use programs to access objects

Question 30

Brewer-Nash model

Answer 30

Chinese Wall; focused on avoiding conflicts of interest, not ensuring confidentiality.

Question 31

Reference monitor

Answer 31

OS kernel function that determines whether a subject with a specific clearance level can access an object of a different classification level

Question 32

Abstraction

Answer 32

the process of hiding the operational complexity of a system from the system's user

Question 33

process isolation

Answer 33

involves the use of object encapsulation or time multiplexing to logically segregate processes so that one process does not interfere with another process

Question 34

Secure memory management

Answer 34

involves the use of other techniques, such as layering, data hiding, and processor states, to protect data that is stored in memory from being corrupted.

Question 35

hashing algorithm (definition)

Answer 35

used to create a fixed-length value called a hash, which is the result of a mathematical calculation performed on a particular data set. By comparing two hash values for the same file, you can determine whether the file has been tampered with.

Question 36

Symmetric key types

Answer 36

AES; RC5;

Question 37

Hashing algorithms

Answer 37

MD5; SHA;

Question 38

Hashing algorithms

Answer 38

MD5; SHA;

Question 39

TEMPEST

Answer 39

collaborative program between the US and UK that examines electromagnetic leaks and makes recommendations on how to mitigate them

Question 40

protocol data units

Answer 40

Transport = segments; network = packets; data link = frames; physical = bits

Question 41

DES Modes of operation (in order of best to worst)

Answer 41

Counter; Cipher Block Chaining; Cipher Feedback; Output Feedback; Electronic Code Book

Question 42

SQL Revoke

Answer 42

specified user's access rights will be removed; in addition, all users who have been granted access by the specified user will also have their access rights removed.

Question 43

TCSEC

Answer 43

Security evaluation standard known as the Orange Book. Created by the DoD in 1980s.

Question 44

ITSEC

Answer 44

European set of security evaluation criteria that is based on TCSEC and is used internationally.

Question 45

International Common Criteria

Answer 45

international standard that is used to test the security of IT products; it uses a hierarchy of current state-of-the-art requirements to test security.