Free 5-question sample test with instant feedback. See how ready you are.
Question 1
What does the principle of 'least privilege' mandate in a security architecture?
Answer: Users, systems, and processes should be granted only the minimum access rights necessary to perform their designated functions, and nothing more.
Question 2
What is 'defense in depth' as a security architecture strategy?
Answer: Defense in depth layers multiple security controls so that if one control fails, additional controls continue to protect the asset. No single point of failure exists.
Question 3
What security principle does 'separation of duties' enforce?
Answer: No single individual should have enough access to complete a sensitive or critical task alone, reducing the risk of fraud or error by requiring multiple people to collude.
Question 4
What is 'secure by default' as a design principle?
Answer: Systems and software ship with the most secure settings enabled out of the box, requiring administrators to explicitly loosen restrictions rather than tighten them.
Question 5
What is the purpose of 'open design' as a cryptographic and security principle?
Answer: Security should not depend on the secrecy of the design or algorithm; the system remains secure even when the design is publicly known, relying on secret keys instead.