Questions for the SSCP were updated on : Jul 20 ,2024
A potential problem related to the physical installation of the Iris Scanner in regards to the usage of
the iris pattern within a biometric system is:
D
Explanation:
Because the optical unit utilizes a camera and infrared light to create the images, sun light can
impact the aperture so it must not be positioned in direct light of any type. Because the subject does
not need to have direct contact with the optical reader, direct light can impact the reader.
An Iris recognition is a form of biometrics that is based on the uniqueness of a subject's iris. A
camera like device records the patterns of the iris creating what is known as Iriscode.
It is the unique patterns of the iris that allow it to be one of the most accurate forms of biometric
identification of an individual. Unlike other types of biometics, the iris rarely changes over time.
Fingerprints can change over time due to scaring and manual labor, voice patterns can change due to
a variety of causes, hand geometry can also change as well. But barring surgery or an accident it is
not usual for an iris to change. The subject has a high-resoulution image taken of their iris and this is
then converted to Iriscode. The current standard for the Iriscode was developed by John Daugman.
When the subject attempts to be authenticated an infrared light is used to capture the iris image and
this image is then compared to the Iriscode. If there is a match the subject's identity is confirmed.
The subject does not need to have direct contact with the optical reader so it is a less invasive means
of authentication then retinal scanning would be.
Reference(s) used for this question;
AIO,
3rd edition, Access Control, p 134.
AIO, 4th edition, Access Control, p 182.
Wikipedia - http://en.wikipedia.org/wiki/Iris_recognition
The following answers are incorrect:
concern that the laser beam may cause eye damage. The optical readers do not use laser so, concern
that the laser beam may cause eye damage is not an issue.
the iris pattern changes as a person grows older. The question asked about the physical installation
of the scanner, so this was not the best answer. If the question would have been about long term
problems then it could have been the best choice. Recent research has shown that Irises actually do
change over time: http://www.nature.com/news/ageing-eyes-hinder-biometric-scans-1.10722
there is a relatively high rate of false accepts. Since the advent of the Iriscode there is a very low rate
of false accepts, in fact the algorithm used has never had a false match. This all depends on the
quality of the equipment used but because of the uniqueness of the iris even when comparing
identical twins, iris patterns are unique.
In Mandatory Access Control, sensitivity labels attached to object contain what information?
B
Explanation:
A Sensitivity label must contain at least one classification and one category set.
Category set and Compartment set are synonyms, they mean the same thing. The sensitivity label
must contain at least one Classification and at least one Category. It is common in some
environments for a single item to belong to multiple categories. The list of all the categories to which
an item belongs is called a compartment set or category set.
The following answers are incorrect:
the item's classification. Is incorrect because you need a category set as well.
the item's category. Is incorrect because category set and classification would be both be required.
The item's need to know. Is incorrect because there is no such thing. The need to know is indicated
by the catergories the object belongs to. This is NOT the best answer.
Reference(s) used for this question;
OIG CBK
, Access Control (pages 186 - 188)
AIO, 3rd Edition, Access Control (pages 162 - 163)
AIO, 4th Edittion, Access Control, pp 212-214.
Wikipedia - http://en.wikipedia.org/wiki/Mandatory_Access_Control
What are the components of an object's sensitivity label?
D
Explanation:
Both are the components of a sensitivity label.
The following are incorrect:
A Classification Set and a single Compartment. Is incorrect because the nomenclature "Classification
Set" is incorrect, there only one classifcation and it is not a "single compartment" but a Compartment
Set.
A single classification and a single compartment. Is incorrect because while there only is one
classifcation, it is not a "single compartment" but a Compartment Set.
A Classification Set and user credentials. Is incorrect because the nomenclature "Classification Set" is
incorrect, there only one classifcation and it is not "user credential" but a Compartment Set. The
user would have their own sensitivity label.
What does it mean to say that sensitivity labels are "incomparable"?
D
Explanation:
If a category does not exist then you cannot compare it. Incomparable is when you have two
disjointed sensitivity labels, that is a category in one of the labels is not in the other label. "Because
neither label contains all the categories of the other, the labels can't be compared. They're said to be
incomparable"
COMPARABILITY:
The label:
TOP SECRET [VENUS ALPHA]
is "higher" than either of the labels:
SECRET [VENUS ALPHA] TOP SECRET [VENUS]
But you can't really say that the label:
TOP SECRET [VENUS]
is higher than the label:
SECRET [ALPHA]
Because neither label contains all the categories of the other, the labels can't be compared. They're
said to be incomparable. In a mandatory access control system, you won't be allowed access to a file
whose label is incomparable to your clearance.
The Multilevel Security policy uses an ordering relationship between labels known as the dominance
relationship. Intuitively, we think of a label that dominates another as being "higher" than the other.
Similarly, we think of a label that is dominated by another as being "lower" than the other. The
dominance relationship is used to determine permitted operations and information flows.
DOMINANCE
The dominance relationship is determined by the ordering of the Sensitivity/Clearance component of
the label and the intersection of the set of Compartments.
Sample Sensitivity/Clearance ordering are:
Top Secret > Secret > Confidential > Unclassified
s3 > s2 >
s1
> s0
Formally, for label one to dominate label 2 both of the following must be true:
The sensitivity/clearance of label one must be greater than or equal to the sensitivity/clearance of
label two.
The intersection of the compartments of label one and label two must equal the compartments of
label two.
Additionally:
Two labels are said to be equal if their sensitivity/clearance and set of compartments are exactly
equal. Note that dominance includes equality.
One label is said to strictly dominate the other if it dominates the other but is not equal to the
other.
Two labels are said to be incomparable if each label has at least one compartment that is not
included in the other's set of compartments.
The dominance relationship will produce a partial ordering over all possible MLS labels, resulting in
what is known as the MLS Security Lattice.
The following answers are incorrect:
The number of classification in the two labels is different. Is incorrect because the categories are
what is being compared, not the classifications.
Neither label contains all the classifications of the other. Is incorrect because the categories are what
is being compared, not the classifications.
the number of categories in the two labels is different. Is incorrect because it is possibe a category
exists more than once in one sensitivity label and does exist in the other so they would be
comparable.
Reference(s) used for this question;
OReilly -
Computer Systems and Access Control (Chapter 3)
http://www.oreilly.com/catalog/csb/chapter/ch03.html
and
http://rubix.com/cms/mls_dom
Which of the following is true about Kerberos?
C
Explanation:
Kerberos depends on secret keys (symmetric ciphers). Kerberos is a third party authentication
protocol. It was designed and developed in the mid 1980's by MIT. It is considered open source but is
copyrighted and owned by MIT. It relies on the user's secret keys. The password is used to encrypt
and decrypt the keys.
The following answers are incorrect:
It utilizes public key cryptography. Is incorrect because Kerberos depends on secret keys (symmetric
ciphers).
It encrypts data after a ticket is granted, but passwords are exchanged in plain text. Is incorrect
because the passwords are not exchanged but used for encryption and decryption of the keys.
It is a second party authentication system. Is incorrect because Kerberos is a third party
authentication system, you authenticate to the third party (Kerberos) and not the system you are
accessing.
References:
MIT http://web.mit.edu/kerberos/
Wikipedi http://en.wikipedia.org/wiki/Kerberos_%28protocol%29
OIG CBK Access Control (pages 181 - 184)
AIOv3 Access Control (pages 151 - 155)
Which of the following is needed for System Accountability?
A
Explanation:
Is a means of being able to track user actions. Through the use of audit logs and other tools the user
actions are recorded and can be used at a later date to verify what actions were performed.
Accountability is the ability to identify users and to be able to track user actions.
The following answers are incorrect:
Documented design as laid out in the Common Criteria. Is incorrect because the Common Criteria is
an international standard to evaluate trust and would not be a factor in System Accountability.
Authorization. Is incorrect because Authorization is granting access to subjects, just because you
have authorization does not hold the subject accountable for their actions.
Formal verification of system design. Is incorrect because all you have done is to verify the system
design and have not taken any steps toward system accountability.
References:
OIG CBK Glossary (page 778)
What is Kerberos?
B
Explanation:
Is correct because that is exactly what Kerberos is.
The following answers are incorrect:
A three-headed dog from Egyptian mythology. Is incorrect because we are dealing with Information
Security and not the Egyptian mythology but the Greek Mythology.
A security model. Is incorrect because Kerberos is an authentication protocol and not just a security
model.
A remote authentication dial in user server. Is incorrect because Kerberos is not a remote
authentication dial in user server that would be called RADIUS.
The three classic ways of authenticating yourself to the computer security software are by something
you know, by something you have, and by something:
C
Explanation:
This is more commonly known as biometrics and is one of the most accurate ways to authenticate an
individual.
The rest of the answers are incorrect because they not one of the three recognized forms for
Authentication.
A timely review of system access audit records would be an example of which of the basic security
functions?
D
Explanation:
By reviewing system logs you can detect events that have occured.
The following answers are incorrect:
avoidance. This is incorrect, avoidance is a distractor. By reviewing system logs you have not avoided
anything.
deterrence. This is incorrect because system logs are a history of past events. You cannot deter
something that has already occurred.
prevention. This is incorrect because system logs are a history of past events. You cannot prevent
something that has already occurred.
A confidential number used as an authentication factor to verify a user's identity is called a:
A
Explanation:
PIN Stands for Personal Identification Number, as the name states it is a combination of numbers.
The following answers are incorrect:
User ID This is incorrect because a Userid is not required to be a number and a Userid is only used to
establish identity not verify it.
Password. This is incorrect because a password is not required to be a number, it could be any
combination of characters.
Challenge. This is incorrect because a challenge is not defined as a number, it could be anything.
Which of the following exemplifies proper separation of duties?
A
Explanation:
This is an example of Separation of Duties because operators are prevented from modifying the
system time which could lead to fraud. Tasks of this nature should be performed by they system
administrators.
AIO defines Separation of Duties as a security principle that splits up a critical task among two or
more individuals to ensure that one person cannot complete a risky task by himself.
The following answers are incorrect:
Programmers are permitted to use the system console. Is incorrect because programmers should not
be permitted to use the system console, this task should be performed by operators. Allowing
programmers access to the system console could allow fraud to occur so this is not an example of
Separation of Duties..
Console operators are permitted to mount tapes and disks. Is incorrect because operators should be
able to mount tapes and disks so this is not an example of Separation of Duties.
Tape operators are permitted to use the system console. Is incorrect because operators should be
able to use the system console so this is not an example of Separation of Duties.
References:
OIG CBK Access Control (page 98 - 101)
AIOv3 Access Control (page 182)
Which of the following is not a logical control when implementing logical access security?
C
Explanation:
Employee badges are considered Physical so would not be a logical control.
The following answers are incorrect:
userids. Is incorrect because userids are a type of logical control.
access profiles. Is incorrect because access profiles are a type of logical control.
passwords. Is incorrect because passwords are a type of logical control.
Which one of the following authentication mechanisms creates a problem for mobile users?
A
Explanation:
Anything based on a fixed IP address would be a problem for mobile users because their location and
its associated IP address can change from one time to the next. Many providers will assign a new IP
every time the device would be restarted. For example an insurance adjuster using a laptop to file
claims online. He goes to a different client each time and the address changes every time he
connects to the ISP.
NOTE FROM CLEMENT:
The term MOBILE in this case is synonymous with Road Warriors where a user is contantly traveling
and changing location. With smartphone today that may not be an issue but it would be an issue
for laptops or WIFI tablets. Within a carrier network the IP will tend to be the same and would
change rarely. So this question is more applicable to devices that are not cellular devices but in some
cases this issue could affect cellular devices as well.
The following answers are incorrect:
mechanism with reusable password. This is incorrect because reusable password mechanism would
not present a problem for mobile users. They are the least secure and change only at specific
interval.
one-time password mechanism. This is incorrect because a one-time password mechanism would
not present a problem for mobile users. Many are based on a clock and not on the IP address of the
user.
challenge response mechanism. This is incorrect because challenge response mechanism would not
present a problem for mobile users.
Organizations should consider which of the following first before allowing external access to their
LANs via the Internet?
D
Explanation:
Before a LAN is connected to the Internet, you need to determine what the access controls
mechanisms are to be used, this would include how you are going to authenticate individuals that
may access your network externally through access control.
The following answers are incorrect:
plan for implementing workstation locking mechanisms. This is incorrect because locking the
workstations have no impact on the LAN or Internet access.
plan for protecting the modem pool. This is incorrect because protecting the modem pool has no
impact on the LAN or Internet access, it just protects the modem.
plan for providing the user with his account usage information. This is incorrect because the question
asks what should be done first. While important your primary concern should be focused on security.
Which of the following would assist the most in Host Based intrusion detection?
A
Explanation:
To assist in Intrusion Detection you would review audit logs for access violations.
The following answers are incorrect:
access control lists. This is incorrect because access control lists determine who has access to what
but do not detect intrusions.
security clearances. This is incorrect because security clearances determine who has access to what
but do not detect intrusions.
host-based authentication. This is incorrect because host-based authentication determine who have
been authenticated to the system but do not dectect intrusions.