According to the Orange Book, which is the first security rating that requires covert channel analysis?

Which security model has these charateristics?

• (TP) Transaction procedure.  Procedures that take the system from one valid state to another

• IVP Integrity Verification Process. Procedures that test the constrained data items to conform to integrity constraints

• CDI Contrained data items.  Data subject to integrity controls

• UDI Uncontrained data items.  Data not subject to integrity controls

•  Access control is specified in access triples consisting of (user, TP, data)

What device can operate in a:

Ready State - ready to process

Supervisory State - executing priviledge routine

Problem state - executing an application

Wait State - waiting for a specific event to finish

CPU operates in a "ready to process" state is referred as?

The CPU operates in a "executing a priviledge routine" is referred as?

The CPU is operating in a "executing an application" state is referred as?

The CPU is operating in a "waiting for a specific event to finish" is referred to as?

NON-LINEAR LAYER

KEY ADDITION LAYER

LINEAR MIXING LAYER

Rijindael employs a round transformation that consists of multiple layers of transformations.  What are those layers?

What evaluation criteria evaluates a product against a protection profile?

Which IEEE 802.11 protocol is used to provide confidentiality of wireless transmissions?

In a ring protection system, where is the operating system security kernel located?

Which type of processor can only process one instruction at a time?

With respect to the Common Criteria, what describes the statement of security claims for a particular IT product / system?

What describes the system component that controls all of subjects to objects, works as an abstract machine and mediates all access to object, protecting objects from unauthorized access and modification?

The following phases of accrediation is part of the?

post accrediation

validation

definition

verification

Which statement is true for which security model ?

• A subject cannot read data at a lower integrity level
• A subject at integrity level X can only invoke a subject at the same or lower  integrity levels
• A subject cannot modify an object in a higher integrity level

In which manner should integrity labels should be assigned when,

• objects (not subjects) should be assigned as one of two integrity  levels (UDI, CDI),
• while subjects (not objects) should be assigned one of two integrity levels (certified, TP, uncertified procedures)?

What security model rule states:

• Supports both Mandatory and Discretionary Access Control
• Is a Multilevel security system for enforcing access control in government and military applications
• Enforces the simple security rule and the *-property rule

Controlled Access Protection

C2

A1 - Verified Design

What hierarchical division of security level requires

formal security verification methods to assure that the mandatory and discretionary security controls employed in the system can effectively protect classified or other sensitive information stored or processed by the system?

B - Mandatory protection

What hierarchical division of security levels ensures

mandatory access control is enforced by security labels?

B3 - Security Domains

What level of security requires security notifications to be sent, system must recover without compromising system, security admin role defined?

B2 - Structured Protection

What security level requires security labels are required, trusted path & covert channel analysis performed, and separate administration functionality is provided?

B1 - Labeled Security

What security level requires each data object must contains classification label and each subject must have a clearance level?

C1 -Discretionary Security Protection

What level of security requires protected execution domain and discretionary access control?

D - Minimal Security

What level of security requires the system provides minimal security?