Effective CISSP Questions

Trusted recovery is the ability to ensure recovery without compromise after a system failure. According to the Common Criteria, which of the following types of trusted recovery refers to the situation when the operating system restores the original state once installing software fails? (Wentz QOTD)
A. Manual recovery
B. Automated recovery
C. Automated recovery without undue loss
D. Functional recovery

Kindly be reminded that the suggested answer is for your reference only. It doesn’t matter whether you have the right or wrong answer. What really matters is your reasoning process and justifications.

My suggested answer is D. Functional recovery.

Wentz’s book, The Effective CISSP: Security and Risk Management, helps CISSP and CISM aspirants build a solid conceptual security model. It is a tutorial for information security and a supplement to the official study guides for the CISSP and CISM exams and an informative reference for security professionals.

Common Criteria Evaluation
Common Criteria Evaluation

There are four types of trusted recovery defined in the Common Criteria:

  1. Manual recovery: e.g., entering the safe mode of Windows to fix the problem manually.
  2. Automated recovery: e.g., The blue screen of death (BSOD) pops up, and the Windows system reboots and repairs automatically. However, your files or data may get lost.
  3. Automated recovery without undue loss: e.g., the BSOD pops up, Windows reboots, and your office files restored.
  4. Functional recovery: e.g., if the installation program (setup.exe) failed, all the installed programs, files, and configurations are rolled back.


可信恢復是在系統出現故障後確保恢復而不受影響的能力。 根據Common Criteria,以下哪種可信恢復是指操作系統在安裝軟件失敗後恢復原始狀態的情況? (Wentz QOTD)
A. 手動恢復
B. 自動恢復
C. 沒有過度損失的自動恢復
D. 功能恢復

Leave a Reply