Test-06 - CIS 3360 Security in Computing Second Examination Fall 2006 Name Question 1(10 10 = 20 points The security levels TOP SECRET SECRET

Info iconThis preview shows pages 1–3. Sign up to view the full content.

View Full Document Right Arrow Icon
CIS – 3360 Security in Computing Second Examination November 17, 2006 Fall 2006 Name __________________________________________________ Question 1 (10 + 10 = 20 points) The security levels TOP SECRET, SECRET, CONFIDENTIAL, and UNCLASSIFIED (ordered from highest to lowest), and all possible categories formed by the subsets of {NU, EU, US} form a lattice under the operation (subset of). Bush is cleared into security level (SECRET, {NU, EU}). i. Document “Anna” is classified as (CONFIDENTIAL, {NU}). Does Bush dominate “Anna”? Justify. ii. Document “Bella” is classified as (SECRET, {EU, US}). Does Bush dominate “Bella”? Justify. Question 2 (10 + 10 = 20 points) The security requirements of a software have been evaluated as EAL5 (semi formally designed and tested). Some one found a mistake in the EAL2 (structural testing). What would be the trustworthiness of the software? Justify your answer.
Background image of page 1

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
Question 3 (10 + 10 = 20 points) In SSL phase 3 of handshake protocol, client generates PM_secret (which is a 48 byte pre
Background image of page 2
Image of page 3
This is the end of the preview. Sign up to access the rest of the document.

This note was uploaded on 07/04/2011 for the course CIS 3360 taught by Professor Guha during the Fall '06 term at University of Central Florida.

Page1 / 3

Test-06 - CIS 3360 Security in Computing Second Examination Fall 2006 Name Question 1(10 10 = 20 points The security levels TOP SECRET SECRET

This preview shows document pages 1 - 3. Sign up to view the full document.

View Full Document Right Arrow Icon
Ask a homework question - tutors are online