ISC2 Exam ISSMP Topic 1 Question 64 Discussion

Actual exam question for ISC2's Information Systems Security Management Professional exam

Question #: 64
Topic #: 1

[All Information Systems Security Management Professional Questions]

Which of the following access control models are used in the commercial sector?

Each correct answer represents a complete solution. Choose two.

AClark-Biba model

BClark-Wilson model

CBell-LaPadula model

DBiba model

Show Suggested Answer

Suggested Answer: B, D

The Biba model is a formal state transition system of computer security policy that describes a set of access control rules designed to ensure data integrity. Data and subjects are grouped into ordered levels of integrity. The model is designed so that subjects may not corrupt data in a level ranked higher than the subject, or be corrupted by data from a lower level than the subject.

The Clark-Wilson security model provides a foundation for specifying and analyzing an integrity policy for a computing system.

Answer option C is incorrect. The Bell-LaPadula access control model is mainly used in military systems.

Answer option A is incorrect. There is no such access control model as Clark-Biba.

by Joesph at Feb 27, 2023, 08:23 AM

Limited Time Offer

25%

Off

Get Premium ISSMP Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!