Java follows which security model:
A.
least privilege
B.
Sand box
C.
CIA
D.
OSI
Explanation:
When a Java applet is executed, the JVM (Java Virtual Machine) will create a virtual machine, which provides
an environment called a sandbox. This virtual machine is an enclosed environment in which the applet carries
out its activities.
Incorrect Answers:
A: The principle of least privilege (POLP) is the practice of limiting access to the minimal level that will allow
normal functioning. Java uses the sandbox model, not the POLP model.
C: A simple but widely-applicable security model is the CIA triad; standing for Confidentiality, Integrity and
Availability; three key principles which should be guaranteed in any kind of secure system. Java does not use
the CIA security model.
D: OSI (Open Systems Interconnection) is reference model for how applications can communicate over a
network. OSI is not related to Java.Conrad, Eric, Seth Misenar and Joshua Feldman, CISSP Study Guide, 2nd Edition, Syngress, Waltham, 2012,
p. 1154