The Computer Security Policy Model the Orange Book is based on is which of the following?
A.
Bell-LaPadula
B.
Data Encryption Standard
C.
Kerberos
D.
Tempest
Explanation:
The Orange Book used the Bell-LaPadula Computer Security Policy model as a comparative evaluation for all
systems.
Incorrect Answers:
B: The Data Encryption Standard (DES) is a cryptographic algorithm, not a Computer Security Policy model.
C: Kerberos is an authentication protocol, not a Computer Security Policy model.
D: TEMPEST is related to limiting the electromagnetic emanations from electronic equipment.Harris, Shon, All In One CISSP Exam Guide, 6th Edition, McGraw-Hill, 2013, pp. 209, 254, 402, 800