Which of the following ensures that security is NOT breached when a system crash or other system failure
occurs?

A.
Trusted recovery

B.
Hot swappable

C.
Redundancy

D.
Secure boot

Explanation:
Trusted recovery ensures that security is not breached when a system crash or other system failure
(sometimes called a “discontinuity”) occurs. It must ensure that the system is restarted without compromising
its required protection scheme, and that it can recover and rollback without being compromised after the failure.
Trusted recovery is required only for B3 and A1 level systems. A system failure represents a serious security
risk because the security controls may be bypassed when the system is not functioning normally.
For example, if a system crashes while sensitive data is being written to a disk (where it would normally be
protected by controls), the data may be left unprotected in memory and may be accessible by unauthorized
personnel.
Trusted recovery has two primary activities — preparing for a system failure and recovering the system.
Incorrect Answers:
B: Hot swappable refers to computer components that can be swapped while the computer is running. This is
not what is described in the question.
C: Redundancy refers to multiple instances of computer or network components to ensure that the system can
remain online in the event of a component failure. This is not what is described in the question.
D: Secure Boot refers to a security standard that ensures that a computer boots using only software that is
trusted. This is not what is described in the question.References:
Krutz, Ronald L. and Russell Dean Vines, The CISSP Prep Guide: Mastering the CISSP and ISSEP Exams,
2nd Edition, Wiley Publishing, Indianapolis, 2004, p. 310