Shared Flashcard Set

Details

CISSP TCSEC Divisions and Classifications
CISSP TCSEC divisions and classifications study deck
58
Computer Science
Professional
11/28/2009

Additional Computer Science Flashcards

 


 

Cards

Term
A security administrator is supported
Definition
B3
Term
Automated imminent intrusion detection, notification, and response
Definition
B3
Term
Covert timing channels are analyzed for occurrence and bandwidth
Definition
B3
Term
DAC and MAC enforcement extended to all subjects and objects
Definition
B2
Term
Discretionary Access Control
Definition
C1
Term
Discretionary protection
Definition
C
Term
First security level to require trusted recovery
Definition
B3
Term
Trusted system recovery procedure
Definition
B3
Term
The minimum TCSEC level that requires protection against covert timing channels
Definition
B3
Term
Formal management and distribution procedures
Definition
A1
Term
Controlled Access Protection
Definition
C2
Term
The system must protect against covert storage channels (but not necessarily covert timing channels)
Definition
B2
Term
Informal statement of the security policy model
Definition
B1
Term
Audit security-relevant events
Definition
B3
Term
Labeled Security
Definition
B1
Term
Mandatory Access Control (MAC) over select subjects and objects
Definition
B1
Term
More finely grained DAC
Definition
C2
Term
Functionally identical to B3
Definition
A1
Term
Requires the system to clearly identify functions of the security administrator to perform security-related functions
Definition
B3
Term
Resource isolation
Definition
C2
Term
Security Domains
Definition
B3
Term
Deals with discretionary protection (need-to-know)
Definition
C
Term
Formal design and verification techniques including a formal top-level specification
Definition
A1
Term
Separation of users and data
Definition
C1
Term
Strict configuration management controls are imposed
Definition
B2
Term
Structured to exclude code not essential to security policy enforcement
Definition
B3
Term
Authentication mechanisms are strengthened
Definition
B2
Term
The first evaluation class of the Trusted Network Interpretation (TNI) or TCSEC that offers labeled security protection
Definition
B1
Term
Trusted facility management is provided with administrator and operator segregation
Definition
B2
Term
Covert storage channels are analyzed for occurrence and bandwidth
Definition
B2
Term
First TCSEC level that addresses object reuse
Definition
C2
Term
Data sensitivity labels
Definition
B1
Term
Design and implementation enable more comprehensive testing and review
Definition
B2
Term
Lowest Orange Book evaluation level requiring Security Domains
Definition
B3
Term
Security policy model clearly defined and formally documented
Definition
B2
Term
Design specification and verification required starting at this level
Definition
B1
Term
Discretionary Security Protection
Definition
C1
Term
First security rating to be concerned with covert channels
Definition
B2
Term
Satisfies reference monitor requirements
Definition
B3
Term
Individual accountability through login procedures
Definition
C2
Term
Audit trails
Definition
C2
Term
Label exportation capabilities
Definition
B1
Term
All levels from this level and above require Auditing mechanisms
Definition
C2
Term
Mandatory Protection
Definition
B
Term
Minimal protection
Definition
D
Term
Most similar to Compartmented Mode Workstations (CMW)
Definition
B3
Term
All discovered flaws must be removed or otherwise mitigated
Definition
B1
Term
The first security level to require a system to support separate operator and system administrator roles
Definition
B2
Term
Carefully structured into protection-critical and non-protection-critical elements
Definition
B2
Term
Requires the system to clearly identify functions of the security administrator to perform security-related functions
Definition
B3
Term
The minimum TCSEC level that requires the support of a separate operation and administrator function
Definition
B2
Term
System design covers not only the data but also the storage devices to protect against covert channels.
Definition
B2
Term
Significant system engineering directed toward minimizing complexity
Definition
B3
Term
Reserved for systems that were evaluated under the TCSEC but did not meet the requirements for a higher trust level.
Definition
D
Term
The minimum TCSEC level that requires protection against covert storage channels
Definition
B2
Term
Trusted facility management (the assignment of a specific individual to administer the security-related functions of a system) is an assurance requirement only for this level and above
Definition
B2
Term
Verified Protection
Definition
A
Term
Structured Protect
Definition
B2
Supporting users have an ad free experience!