Systems Security Certified Practitioner (SSCP) — Question 102

Which of the following are required for Life-Cycle Assurance?

Answer options

• A. System Architecture and Design specification.
• B. Security Testing and Covert Channel Analysis.
• C. Security Testing and Trusted distribution.
• D. Configuration Management and Trusted Facility Management.

Correct answer: D

Explanation

The correct answer is D because Configuration Management and Trusted Facility Management are critical components in ensuring that systems remain secure throughout their life cycle. The other options, while important, do not encompass the complete requirements for Life-Cycle Assurance.