Week 4

Question 1

What is the flow of data assets to an unauthorized external party?

jpresue

Answer 1

Data Leakage

Question 2

Data at rest is commonly

Answer 2

Stored in external storage devices

Question 3

Method of storing data encryption keys to a certified third party

Answer 3

key escrow

Question 4

CPTED means

Answer 4

Crime Prevention Through Environmental Design

Question 5

Fundamental organization of a system embodied in its components, their relationships to each other and to the environment, and the principles guiding its design and evolution.

Answer 5

Architecture

Question 6

Collection of document types to convey an architecture in a formal manner

Answer 6

Architecture Description

Question 7

Individual, team, or organization with interests in or concerns relative to a system

Answer 7

Stakeholder

Question 8

Representation of a whole system from the perspective of a related set of concerns

Answer 8

View

Question 9

Specification of the conventions for constructing and using a view

Answer 9

Viewpoint

Question 10

Computer Architecture encompasses what?

Answer 10

Operating system
Memory chips
Logic circuits
Storage devices
Input and output devices
Networking component
Data, memory and control buses

Question 11

Five responsibilities of memory manager

Answer 11

Relocation, Protection, Sharing, Logical Organization, Physical Organization

Question 12

To make sure a process only interacts with its memory segment, what does the CPU use?

Answer 12

Base Register, Limit Register

Question 13

Reserved Hard drive space used to extend RAM capabilities

Answer 13

Swap Space

Question 14

Referred to as “The Big Mess” because of lack of structure

Answer 14

Monolithic Operating System

Question 15

Sample of MOnolithic Operating System

Answer 15

MS DOS

Question 16

Separates system functionality into hierarchical layes

Answer 16

Layered Operating System Architecture

Question 17

THE stands for

Answer 17

TechnischeHogeschoolEindhoven multiprogramming system

Question 18

How many layers does THE has?

Answer 18

5

Question 19

2 types of security models

Answer 19

Lattice-based model, Rule-based model

Question 20

Layer Based security model?

Answer 20

Lattice-based

Question 21

Specific rules dictate how security operates

Answer 21

Rule-Based

Question 22

state machine model that enforces the confidentiality aspects of access control that was developed in the 1970s

Answer 22

Bell-LaPadula

Question 23

System that employs the Bell-LaPadula model

Answer 23

multilevel security system

Question 24

Main rules used and enforced in Bell-LaPadula model

Answer 24

Simple Security, Star Property, Strong Star Property

Question 25

State machine model that is developed after bell-lapadula

Answer 25

Biba Model

Question 26

3 main rules of Biba Model

Answer 26

Integrity Axiom, Simple Integrity Axion, Invocation Property

Question 27

Model that separates data into Subsets

Answer 27

Clark-Wilson Model

Question 28

Also Called the Chinese Wall model; was created to provide access controls that can change dynamically depending upon a user’s previous actions

Answer 28

Brewer & Nash Model

Question 29

Addresses and defines a set of basic rights in terms of commands that a specific subject can execute on an object

Answer 29

Graham-Denning

Question 30

Operating System level computer security model, which deals with the integrity of access rights

Answer 30

Harrison, Ruzzo, Ullman Model

Question 31

When was the first version of Common Criteria released?

Answer 31

1993

Question 32

Common Criteria is also called

Answer 32

ISO 15408

Question 33

Comprehensive technical evaluation of the security components and their compliance for the purpose of accreditation

Answer 33

Certification

Question 34

Provides proof of the origin, authenticity and integrity of data

Answer 34

non-repudiation

Question 35

mathematical function that converts any digital data into an output string with a fixed number of characters

Answer 35

Hash Function

Question 36

Happens when two different inputs have the same output when passed through a hash algorithm

Answer 36

Collision

Question 37

Encryption algorithm that utilizes the SAME KEY for encryption and decryption

Answer 37

Symmetric Encryption

Question 38

Algorithm that utilizes public and private key

Answer 38

Asymmetric Encryption

Question 39

number of bits in a key used by a cryptographic algorithm

Answer 39

Key Space