SABSA Module F2
1. Authenticates identity
2. Checks authorization - answer Which 2 actions does the Relying Party perform in the
trust broker model?
1. Claims identity
2. Claims authority - answer Which two (2) actions does the Claimant perform in the
trust brokering model
Component Layer, People (Who) Column - answer Where in the SABSA Architecture
Matrix is Personnel Management Tools & Standards located?
Conceptual layer, Motivation (Why) column - answer Where in the SABSA Architecture
Matrix are Risk Management Objectives and enablement and control objectives
located?
Trust is a Relational business attribute not a technical one. - answer What type of
attribute is Trust?
Risk Management Policies;
Domain Policies - answerWhat objectives/outcomes exist at the Logical Architecture
layer in the Motivation (Why) column of the SABSA Matrix?
Domain Maps
Domain Definitions; Inter-domain associations & interactions - answerWhat
objectives/outcomes exist at the Logical Architecture layer in the Location (Where)
column of the SABSA Matrix?
Business Risk - Opportunities & Threats Inventory - answerWhat objectives/outcomes
exist at the Contextual Architecture layer in the Motivation (Why) column of the SABSA
Matrix?
Risk Management Objectives;
Enablement & Control Objectives
Policy Architecture - answerWhat objectives/outcomes exist at the Conceptual
Architecture layer in the Motivation (Why) column of the SABSA Matrix?
Business Attributes Profile - answerWhat objectives/outcomes exist at the Conceptual
Architecture layer in the Assets (What) column of the SABSA Matrix?
, The Owner role is primarily ACCOUNTABLE for the performance of assets (attributes)
within a specific domain.
The Trustee role is RESPONSIBLE for the performance of assets (attributes) within a
specific domain. Trustee is a delegated authority role. Consults domain owner on risk
appetite. - answerWhat is the main difference between the Owner role and Trustee role
in the SABSA Governance model?
It is the heart of the SABSA methodology. The Business Attributes Profile is the
'requirements engineering' technique that makes SABSA truly unique and provides
linkage between business requirements and technology / process design. -
answerDescribe the concept of the SABSA Business Attributes Profile
1. Executive Interview Approach
2. Analysis followed by validation
3. SABSA Fast-Track
4. Blended Approach - answerWhat are the four (4) SABSA start-up approaches?
1. Enterprise Policy
2. Domain Policy - answerList the two high-level categories of the SABSA Policy
Framework
False. Each domain should enforce its own security policy, independently of other
domains. Trust between domains will have different registration authorities. -
answerTRUE or FALSE: Trust between domains is also constant
A security domain is a set of elements subject to a common security policy defined and
owned by a single policy authority. - answerWhat is the definition of a Security Domain
according to SABSA?
security services - answerRelating to Infrastructure Layer Domains, _____________
_______________ are deployed in each technical domain to meet the policy, control &
enablement objectives of that domain
Designer's view of ICT Systems
Concerned with information security & systems functionality
Elements exist in logical domains not tied to specific physical locations -
answerDescribe the Design Phase Logical Layer
Builders's view of ICT Systems
Concerned with data security & infrastructure security
Technical specifications for systems
Elements exist in a specific physical domain and location - answerDescribe the Design
Phase Physical Layer
Tradesman's view of ICT Systems
Specialised :
1. Authenticates identity
2. Checks authorization - answer Which 2 actions does the Relying Party perform in the
trust broker model?
1. Claims identity
2. Claims authority - answer Which two (2) actions does the Claimant perform in the
trust brokering model
Component Layer, People (Who) Column - answer Where in the SABSA Architecture
Matrix is Personnel Management Tools & Standards located?
Conceptual layer, Motivation (Why) column - answer Where in the SABSA Architecture
Matrix are Risk Management Objectives and enablement and control objectives
located?
Trust is a Relational business attribute not a technical one. - answer What type of
attribute is Trust?
Risk Management Policies;
Domain Policies - answerWhat objectives/outcomes exist at the Logical Architecture
layer in the Motivation (Why) column of the SABSA Matrix?
Domain Maps
Domain Definitions; Inter-domain associations & interactions - answerWhat
objectives/outcomes exist at the Logical Architecture layer in the Location (Where)
column of the SABSA Matrix?
Business Risk - Opportunities & Threats Inventory - answerWhat objectives/outcomes
exist at the Contextual Architecture layer in the Motivation (Why) column of the SABSA
Matrix?
Risk Management Objectives;
Enablement & Control Objectives
Policy Architecture - answerWhat objectives/outcomes exist at the Conceptual
Architecture layer in the Motivation (Why) column of the SABSA Matrix?
Business Attributes Profile - answerWhat objectives/outcomes exist at the Conceptual
Architecture layer in the Assets (What) column of the SABSA Matrix?
, The Owner role is primarily ACCOUNTABLE for the performance of assets (attributes)
within a specific domain.
The Trustee role is RESPONSIBLE for the performance of assets (attributes) within a
specific domain. Trustee is a delegated authority role. Consults domain owner on risk
appetite. - answerWhat is the main difference between the Owner role and Trustee role
in the SABSA Governance model?
It is the heart of the SABSA methodology. The Business Attributes Profile is the
'requirements engineering' technique that makes SABSA truly unique and provides
linkage between business requirements and technology / process design. -
answerDescribe the concept of the SABSA Business Attributes Profile
1. Executive Interview Approach
2. Analysis followed by validation
3. SABSA Fast-Track
4. Blended Approach - answerWhat are the four (4) SABSA start-up approaches?
1. Enterprise Policy
2. Domain Policy - answerList the two high-level categories of the SABSA Policy
Framework
False. Each domain should enforce its own security policy, independently of other
domains. Trust between domains will have different registration authorities. -
answerTRUE or FALSE: Trust between domains is also constant
A security domain is a set of elements subject to a common security policy defined and
owned by a single policy authority. - answerWhat is the definition of a Security Domain
according to SABSA?
security services - answerRelating to Infrastructure Layer Domains, _____________
_______________ are deployed in each technical domain to meet the policy, control &
enablement objectives of that domain
Designer's view of ICT Systems
Concerned with information security & systems functionality
Elements exist in logical domains not tied to specific physical locations -
answerDescribe the Design Phase Logical Layer
Builders's view of ICT Systems
Concerned with data security & infrastructure security
Technical specifications for systems
Elements exist in a specific physical domain and location - answerDescribe the Design
Phase Physical Layer
Tradesman's view of ICT Systems
Specialised :
