MOD 14 Flashcards
For trusted O/S, we have confidence in which 4 things?
1) Memory protection
2) File protection
3) General object access control
4) user authentication
What is it called when the software does and acts like it should?
functional correctness
What is it called when the data the software touches is unaffected even when given bad/unauthorized commands?
Integrity Enforcement
What privilege has programs access only the secure data it needs and doesn’t pass rights/data to untrusted objects?
Limited Privilege
What is the trust we have in a program that matches the sensitivity of the data/environment?
Appropriate Confidence Level
What is a set of rules that lay out what needs to be secured?
Security Policy
What is a representation of the policy that the O/S will enforce?
Model
What is the implementation of thee model and how it’s to be implemented?
Design
What has features to ensure all functionality needed is present?
Trust
_________ is the belief that the O/S enforces the security policy.
Assurance
Which policy is based on protec