Which of the following is not an Orange Book-defined life cycle assurance requirement?
A.
Security testing
B.
Design specification and testing
C.
Trusted distribution
D.
System integrity
Explanation:
Life cycle assurance is more than configuration management. Reference: “Operational assurance
focuses on the basic features and architecture of a system that lend themselves to supporting
security. There are five requirements or elements of operation assurance: System architecture
System integrity Covert channel analysis Trusted facility management Trusted Recovery Life cycle
assurance focuses on the controls and standards that are necessary for designing, building, and
maintaining a system. The following are the four requirements or elements of life cycle assurance:
Security testing Design specification and testing Configuration Management Trusted distribution” Pg
398 Tittel