Certified Secure Software Lifecycle Professional (CSSLP) — Question 41

Which of the following security controls works as the totality of protection mechanisms within a computer system, including hardware, firmware, and software, the combination of which is responsible for enforcing a security policy?

Answer options

• A. Common data security architecture (CDSA)
• B. Application program interface (API)
• C. Trusted computing base (TCB)
• D. Internet Protocol Security (IPSec)

Correct answer: D

Explanation

The correct answer is D, as Internet Protocol Security (IPSec) provides a framework for security at the network layer, but the totality of protection mechanisms is actually defined by C, Trusted Computing Base (TCB), which includes all components that enforce security policies. A and B refer to specific architectures and interfaces that do not encompass the entirety of security controls.