CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. ISC
  5. SSCP

Free SSCP Exam Braindumps (page: 62)

Page 61 of 269
PDF with 1074 Questions

What is the name of the first mathematical model of a multi-level security policy used to define the concept of a secure state, the modes of access, and rules for granting access?

  1. Clark and Wilson Model
  2. Harrison-Ruzzo-Ullman Model
  3. Rivest and Shamir Model
  4. Bell-LaPadula Model

Answer(s): D


Reference:

TIPTON, Hal, (ISC)2, Introduction to the CISSP Exam presentation.



Which of the following models does NOT include data integrity or conflict of interest?

  1. Biba
  2. Clark-Wilson
  3. Bell-LaPadula
  4. Brewer-Nash

Answer(s): C

Explanation:

Bell LaPadula model (Bell 1975): The granularity of objects and subjects is not predefined, but the model prescribes simple access rights. Based on simple access restrictions the Bell LaPadula model enforces a discretionary access control policy enhanced with mandatory rules. Applications with rigid confidentiality requirements and without strong integrity requirements may properly be modeled.
These simple rights combined with the mandatory rules of the policy considerably restrict the spectrum of applications which can be appropriately modeled.


Reference:

TIPTON, Hal, (ISC)2, Introduction to the CISSP Exam presentation.
Also check:
Proceedings of the IFIP TC11 12th International Conference on Information Security, Samos (Greece), May 1996, On Security Models.



What is the PRIMARY use of a password?

  1. Allow access to files.
  2. Identify the user.
  3. Authenticate the user.
  4. Segregate various user's accesses.

Answer(s): C


Reference:

TIPTON, Hal, (ISC)2, Introduction to the CISSP Exam presentation.



The three classic ways of authenticating yourself to the computer security software are: something you know, something you have, and something:

  1. you need.
  2. you read.
  3. you are.
  4. you do.

Answer(s): C


Reference:

TIPTON, Hal, (ISC)2, Introduction to the CISSP Exam presentation.






Post your Comments and Discuss ISC SSCP exam with other Community members:

SSCP Exam Discussions & Posts