What is the highest TCSEC class applicable to a discretionary access control system which sends data across a network?
A.
A
B.
B
C.
C
D.
D
Explanation:
Answer D is correct; this is a tricky question: TCSEC (Orange Book) systems do not address network security, so any networked system has minimal (D) security. The Trusted Network Interpretation (TNI, aka the Red Book) addresses network systems.Incorrect Answers and Explanations: A, B, and C: Answers A, B, and C are incorrect. A (verified protection) and B (Mandatory protection) apply to MAC (Mandatory Access Control) systems. C (discretionary protection) applies to DAC (Mandatory Access Control) systems with no network connection.