CISSP Lesson 5 PreTest

Question 2

Subjects should have least privileges on a system until they have been proven trustworthy.
A) TRUE
B) FALSE

Answer 2

FALSE

Question 3

Which category defined in the Trusted Computer System Evaluation Criteria provides basic access control?
A) Discretionary protection
B) Minimal protection
C) Verified protection

Answer 3

Discretionary protection

Question 4

Hardware is any tangible part of a computer system, whereas firmware is software stored on a ROM chip.
A) TRUE
B) FALSE

Answer 4

TRUE

Question 5

Which type of RAM uses flip-flop circuits?
A) Dynamic RAM
B) Static RAM

Answer 5

Static RAM

Question 6

How are closed systems and open systems different?
A) Open systems cannot connect to other systems as well as closed systems
B) Open systems are easier to evaluate than closed systems
C) Open systems are proprietary and closed systems are not

Answer 6

Open systems are easier to evaluate than closed systems

Question 7

Which are characteristics of virtual memory? Choose all that apply.
A) Small, high-speed memory
B) Allows programs to address memory larger than the physical memory
C) Requires multiple clock cycles
D) Uses memory management unit to translate addresses

Answer 7

Allows programs to address memory larger than the physical memory
Uses memory management unit to translate addresses

Question 8

Which operating state requires specific protection mechanisms to prevent data from crossing security level boundaries?
A) Single state
B) Multistate

Answer 8

Multistate

Question 9

When running in user mode, only a subset of the full instruction set is available.
A) TRUE
B) FALSE

Answer 9

TRUE

Question 10

The time of check/time of use lapse is often used by attackers to exploit the system.
A) TRUE
B) FALSE

Answer 10

TRUE

Question 11

Which component of a CPU accesses and interprets instructions?
A) Control unit
B) Arithmetic logic unit
C) Register

Answer 11

Control unit

Question 12

Which are characteristics of the Clark-Wilson model? Choose all that apply.
A) Primarily for commercial applications
B) Enforces integrity
C) Uses security labels
D) Based on the state machine concept

Answer 12

Primarily for commercial applications
Enforces integrity
Uses security labels

Question 13

Which security level is needed to prohibit covert channels?
A) Level D or above
B) level C2 or above
C) Level B2 or above

Answer 13

Level B2 or above

Question 14

Input and parameter checking flaws may lead to spoofing exploits.
A) TRUE
B) FALSE

Answer 14

FALSE

Question 15

Which are steps of the execution cycle? Choose all that apply.
A) Fetch the instructions
B) Decode the instructions
C) Execute the instructions
D) Encode the instructions

Answer 15

Fetch the instructions
Decode the instructions
Execute the instructions

Question 16

With pipelining, each cycle must complete before starting on the next instruction.
A) TRUE
B) FALSE

Answer 16

FALSE

Question 17

Which are characteristics of the Bell-LaPadula model? Choose all that apply.
A) Protects classified information
B) Supports a single state
C) Addresses data confidentiality only
D) Designed to prevent unauthorized modification
E) Built on the state machine concept

Answer 17

Protects classified information
Addresses data confidentiality only
Built on the state machine concept

Question 18

The Noninterference model protects state changes from cascading into other, unintended areas.
A) TRUE
B) FALSE

Answer 18

TRUE

Question 19

What do security perimeters and DMZs provide?
A) Accessibility
B) Data monitoring
C) Physical isolation

Answer 19

Physical isolation

Question 20

Which subcategory of mandatory protection provides security labels and assurance that no covert channels exist?
A) Labeled security
B) Structured protection
C) Security domains

Answer 20

Structured protection

Question 21

Which type of storage is CPU accessible directly?
A) Real storage
B) Primary Storage
C) Secondary storage

Answer 21

Primary Storage