MOD 14

Question 1

For trusted O/S, we have confidence in which 4 things?

Answer 1

1) Memory protection
2) File protection
3) General object access control
4) user authentication

Question 2

What is it called when the software does and acts like it should?

Answer 2

functional correctness

Question 3

What is it called when the data the software touches is unaffected even when given bad/unauthorized commands?

Answer 3

Integrity Enforcement

Question 4

What privilege has programs access only the secure data it needs and doesn’t pass rights/data to untrusted objects?

Answer 4

Limited Privilege

Question 5

What is the trust we have in a program that matches the sensitivity of the data/environment?

Answer 5

Appropriate Confidence Level

Question 6

What is a set of rules that lay out what needs to be secured?

Answer 6

Security Policy

Question 7

What is a representation of the policy that the O/S will enforce?

Answer 7

Model

Question 8

What is the implementation of thee model and how it’s to be implemented?

Answer 8

Design

Question 9

What has features to ensure all functionality needed is present?

Answer 9

Trust

Question 10

_________ is the belief that the O/S enforces the security policy.

Answer 10

Assurance

Question 11

Which policy is based on protec