Question 0254 - Systems Security Certified Practitioner

Memory management in TCSEC levels B3 and A1 operating systems may utilize "data hiding". What does this mean?

A. System functions are layered, and none of the functions in a given layer can access data outside that layer.
B. Auditing processes and their memory addresses cannot be accessed by user processes.
C. Only security processes are allowed to write to ring zero memory.
D. It is a form of strong encryption cipher.

Correct Answer: A

Explanation:

Data Hiding is protecting data so that it is only available to higher levels this is done and is also performed by layering, when the software in each layer maintains its own global data and does not directly reference data outside its layers.
The following answers are incorrect:
Auditing processes and their memory addresses cannot be accessed by user processes. Is incorrect because this does not offer data hiding.
Only security processes are allowed to write to ring zero memory. This is incorrect, the security kernel would be responsible for this.
It is a form of strong encryption cipher. Is incorrect because this does not conform to the definition of data hiding.

Systems Security Certified Practitioner – SSCP

Tag: Question 0254

Systems Security Certified Practitioner – SSCP – Question0254