Shared Flashcard Set

Details

CISSP TCSEC Divisions and Classifications
CISSP TCSEC divisions and classifications study deck
58
Computer Science
Professional
11/28/2009
Click here to study/print these flashcards.

Create your own flash cards! Sign up here.

Additional Computer Science Flashcards

 

 

Cards

Term
A security administrator is supported
 Definition
B3
Term
Automated imminent intrusion detection, notification, and response
 Definition
B3
Term
Covert timing channels are analyzed for occurrence and bandwidth
 Definition
B3
Term
DAC and MAC enforcement extended to all subjects and objects
 Definition
B2
Term
Discretionary Access Control
 Definition
C1
Term
Discretionary protection
 Definition
C
Term
First security level to require trusted recovery
 Definition
B3
Term
Trusted system recovery procedure
 Definition
B3
Term
The minimum TCSEC level that requires protection against covert timing channels
 Definition
B3
Term
Formal management and distribution procedures
 Definition
A1
Term
Controlled Access Protection
 Definition
C2
Term
The system must protect against covert storage channels (but not necessarily covert timing channels)
 Definition
B2
Term
Informal statement of the security policy model
 Definition
B1
Term
Audit security-relevant events
 Definition
B3
Term
Labeled Security
 Definition
B1
Term
Mandatory Access Control (MAC) over select subjects and objects
 Definition
B1
Term
More finely grained DAC
 Definition
C2
Term
Functionally identical to B3
 Definition
A1
Term
Requires the system to clearly identify functions of the security administrator to perform security-related functions
 Definition
B3
Term
Resource isolation
 Definition
C2
Term
Security Domains
 Definition
B3
Term
Deals with discretionary protection (need-to-know)
 Definition
C
Term
Formal design and verification techniques including a formal top-level specification
 Definition
A1
Term
Separation of users and data
 Definition
C1
Term
Strict configuration management controls are imposed
 Definition
B2
Term
Structured to exclude code not essential to security policy enforcement
 Definition
B3
Term
Authentication mechanisms are strengthened
 Definition
B2
Term
The first evaluation class of the Trusted Network Interpretation (TNI) or TCSEC that offers labeled security protection
 Definition
B1
Term
Trusted facility management is provided with administrator and operator segregation
 Definition
B2
Term
Covert storage channels are analyzed for occurrence and bandwidth
 Definition
B2
Term
First TCSEC level that addresses object reuse
 Definition
C2
Term
Data sensitivity labels
 Definition
B1
Term
Design and implementation enable more comprehensive testing and review
 Definition
B2
Term
Lowest Orange Book evaluation level requiring Security Domains
 Definition
B3
Term
Security policy model clearly defined and formally documented
 Definition
B2
Term
Design specification and verification required starting at this level
 Definition
B1
Term
Discretionary Security Protection
 Definition
C1
Term
First security rating to be concerned with covert channels
 Definition
B2
Term
Satisfies reference monitor requirements
 Definition
B3
Term
Individual accountability through login procedures
 Definition
C2
Term
Audit trails
 Definition
C2
Term
Label exportation capabilities
 Definition
B1
Term
All levels from this level and above require Auditing mechanisms
 Definition
C2
Term
Mandatory Protection
 Definition
B
Term
Minimal protection
 Definition
D
Term
Most similar to Compartmented Mode Workstations (CMW)
 Definition
B3
Term
All discovered flaws must be removed or otherwise mitigated
 Definition
B1
Term
The first security level to require a system to support separate operator and system administrator roles
 Definition
B2
Term
Carefully structured into protection-critical and non-protection-critical elements
 Definition
B2
Term
Requires the system to clearly identify functions of the security administrator to perform security-related functions
 Definition
B3
Term
The minimum TCSEC level that requires the support of a separate operation and administrator function
 Definition
B2
Term
System design covers not only the data but also the storage devices to protect against covert channels.
 Definition
B2
Term
Significant system engineering directed toward minimizing complexity
 Definition
B3
Term
Reserved for systems that were evaluated under the TCSEC but did not meet the requirements for a higher trust level.
 Definition
D
Term
The minimum TCSEC level that requires protection against covert storage channels
 Definition
B2
Term
Trusted facility management (the assignment of a specific individual to administer the security-related functions of a system) is an assurance requirement only for this level and above
 Definition
B2
Term
Verified Protection
 Definition
A
Term
Structured Protect
 Definition
B2
Supporting users have an ad free experience!