Professional Documents
Culture Documents
IT SECURITY
s2057 ...
TRUE/FALSE QUESTIONS:
9. An access right describes the way in which a subject may access an object.
s2057 ...
Ans: True
10. The default set of rights should always follow the rule of least
privilege or read-only access
Ans: True
11. A user program executes in a kernel mode in which certain areas of memory are
protected from the user’s use and certain instructions may not be executed.
Ans: False
12. Any program that is owned by, and SetUID to, the “superuser” potentially grants
unrestricted access to the system to any user executing that program
Ans: True
A. Adequacy B. Authentication
D. Authorization D. Audit
Ans: B. Authentication
C. Control D. Monitoring
Ans: A. Authorization
A. MAC B. RBAC
C.DAC D. MBAC
Ans: C.DAC
C. RBAC D. MBAC
Ans: A. MAC
C. subject D. owner
Ans: C. subject
A. object B. owner
D. world D. subject
Ans: A. object
A. superuser B. kernel
C. set user D. sticky
Ans: D. sticky
10. is based on the roles the users assume in a system rather than the
user’s identity.
A. DAC
B. RBAC C. MAC
D. URAC
Ans: B. RBAC
D. permission D. session
Ans: B. role
s2057 ...
C. Cardinality D. Prerequisites
Ans: A. Constraints
A. Cardinality B. Prerequisite
D. Exclusive D. Hierarchy
Ans: A. Cardinality
A. DSD C.RBAC
B. ABAC D. SSD
Ans: B. ABAC
Ans: Audit
Ans: Role-Based
Ans: Discretionary
Ans: object
Ans: Group
access rights that permit the entity, by its own volition, to enable another entity to
access some resource.
Ans: Discretionary
8. The _________ user id is exempt from the usual file access control constraints and
has system wide access.
Ans: Superuser
Ans: session
10. Role hierarchies make use of the concept of to enable one role to
implicitly include access rights associated with a subordinate role.
Ans: inheritance
Ans: Prerequisite
12. There are three key elements to an ABAC model: attributes which are defined
for entities in a configuration; a policy model, which defines the ABAC policies;
and the model, which applies to policies that enforce access control.
Ans: Architecture
13. The three types of attributes in the ABAC model are subject attributes, object
attributes, and attributes.
Ans: Environment
Ans: Credential