[CISSP] Domain Application and System Development Security
Domain Application and System Development Security
Polyinstantiation is a feature of object-oriented programming that prevents or discourages subjects at a given level from accessing higher sensitivity information.
Polymorphism allows similar data to be processed based on the clearance of the user and the class the object belongs to. Polymorphism is when different objects respond to the same command, input, or message in different ways.
Polyinstantiation a mechanism used to take a copy of an object and repopulate it with different data or modify its characteristics in some way.
Rows in a database are referred to as tuples. Columns are attributes, and a collection of related data items are called a record.
Validation ensures that the product satisfies the real-world problem it was developed to accommodate and that actual performance and outputs are accurate.
Verification evaluates the product's performance to the acclaimed functionalities and protection levels. It also compares the specifications of the product to that actual resulting product.
Aggregation is the act of reviewing information at or below their security clearance and then deducing information that resides at a hinger level that they are not authorized to know.
The goal of data or information hiding in object-oriented programming is to prevent one component from needing to know how another component functions, as long as it performs the required task.
A reference monitor is the abstract machine that holds all of the rules of access for the system. The security kernel is the active entity that enforces the reference monitor's rules. They control the access attempts of any and all subjects; a user is just one example of a subject.
Need-to-know does not allow subjects to access objects unless they have beend granted formal approval, which is based on a need to know.
Capability Maturity Model
- Initial
- Repeatable
- Defined
- Managed
- Optimizing
The number of rows in the relation is referred to as the cardinality and the number of columns is the degree.
Datamarts
are colection of data from different databases or system that fulfill a specific need.
Data warehouses
are a collection of data from different databases or systems that could cover a wide variety of objectives.
Data mining
is also known as Knowledge Discovery in Database(KDD), which are techniques of identifying valid and useful patterns.
- Classification-Data is grouped together according to shared similarities
- Probabilistic-Data interdependencise are identified and probabilities are applied to their relationships
- Statistical- Identifies relationships between data elements and uses rule discovery
0 Comments:
Post a Comment
<< Home