CompTIA Advanced Security Practitioner (CASP) - 04 Security Controls for Hosts Questions with Correct Answers

Trusted Operating System Correct Answer provides support for multilevel security and evidence of correctness to meet a particular set of government requirements Trusted Computer System Evaluation Criteria (TCSEC) Correct Answer - standards for the DoD to evaluate products - Orange Book a collection of criteria based on the Bell-LaPadula Model - replaced by Common Criteria Common Criteria Correct Answer - international standard - uses Evaluation Assurance Levels to rate systems - ISO 15408-1:2009 is equivalent to CC CC EAL 1 Correct Answer Functionally tested CC EAL 2 Correct Answer Structurally tested CC EAL 3 Correct Answer Methodically tested and checked CC EAL 4 Correct Answer Methodically designed, tested and reviewed CC EAL 5 Correct Answer Semi-formally designed and tested CC EAL 6 Correct Answer Semi-formally verified design and tested CC EAL 7 Correct Answer Formally verified design and tested Patch Types Correct Answer - Hot fixes - solve security issues and should be applied immediately, if applicable - Update - solves functionality issue - Service Pack - all hotfixes and updates since OS release Data Loss Prevention Correct Answer - designed to prevent data leakage - Network DLP - installed at network egress points near perimeter - Endpoint DLP - runs on end-user workstations - Precise methods - involve content registration - Imprecise methods - involve keywords, regexps, et iptables Correct Answer - Common host-based firewall on Linux - replaces ipchains