What is a PRIMARY reason for designing the security kernel to be as small as possible?

seenagapeNovember 3, 2015

PrepAway - Latest Free Exam Questions & Answers

A.
The operating system cannot be easily penetrated by users.

B.
Changes to the kernel are not required as frequently.

C.
Due to its compactness, the kernel is easier to formally verify.

D.
System performance and execution are enhanced.

Explanation:
I disagree with the original answer which was B (changes to the kernel) and think it is C (Due to its
compactness). However, use your best judgment based on knowledge and experience. Below is why
I think it is C.
“There are three main requirements of the security kernel:
It must provide isolation for the processes carrying out the reference monitor concept and they
must be tamperproof.
The reference monitor must be invoked for every access attempt and must be impossible to
circumvent. Thus the reference monitor must be implemented in a complete and foolproof way.
It must be small enough to be able to be tested and verified in a complete and comprehensive
manner.” – Shon Harris All-in-one CISSP Certification Guide pg 232-233

Get 50% Discount on All Your Purchases
at PrepAway.com - Latest Exam Questions

This is ONE TIME OFFER

Enter your email address to receive your 50% off dicount code:

SPECIAL OFFER: GET 50% OFF

Use Discount Code:

ISC Exam Questions

Free ISC2 Study Guide

What is a PRIMARY reason for designing the security kernel to be as small as possible?

Leave a Reply Cancel reply