shieldCISSP Practice Domain 3 — Security Architecture and Engineering Q64 of 120

What is the trusted computing base (TCB)?

A CISSP practice question covering Domain 3: Security Architecture and Engineering. Try answering before reading the explanation below.

▶ Show options & answer

The collection of all hardware, firmware, and software components that enforce a security policy

✓ Correct answer

The encryption module only

User-mode code only

Application logging subsystem

Why "The collection of all hardware, firmware, and software components that enforce a security policy" is the right answer

The TCB encompasses every component whose correct operation is required to enforce policy. Smaller TCBs are easier to assure. Reference monitor is the abstract enforcer concept; the TCB realizes it.

Study videos for this topic

Want to go deeper on Domain 3? Watch the full breakdown — every video is free, no account, no upsell.

CISSP Domain 3: Bell-LaPadula vs Biba (No More Mix-Ups)

Domain 3 — Security Architecture and Engineering

CISSP Domain 3: TPM, Reference Monitor, and TCB

Domain 3 — Security Architecture and Engineering

CISSP Domain 3: Cloud, ICS, IoT & Container Vulnerabilities

Domain 3 — Security Architecture and Engineering

CISSP Crypto: Which Key for Privacy vs Signing?

Domain 3 — Security Architecture and Engineering

Take the full CISSP practice test

120 questions, instant explanations, study-video links on every miss. No account.

Start full test →

What is the trusted computing base (TCB)?

Study videos for this topic

Other practice tests