Which of the following examples is the best definition of Fail Secure?
A.
The operating system is started without the security front-end loaded.
B.
The system preserves a secure state during and after a system crash.
C.
Access personnel have security clearance, but they do not have a
need-to-know.
D.
The system fails to preserve a secure state during and after a system
crash.
Explanation:
The correct answer is “The system preserves a secure state during and after a system crash”.
Based on the Common Criteria, a system can be evaluated as fail secure if it preserves a secure
state during and after identified failures occur.