CompTIA Security+ Exam Prep

Answer: B - A security kernel is made up of hardware, software, and firmware components that fall within the TCB and implements and enforces the reference monitor concept. The security kernel mediates all access and functions between subjects and objects. The security kernel is the core of the TCB and is the most commonly used approach to building trusted computing systems. The security kernel has three main requirements: 1) it must provide isolation for the processes carrying out the reference monitor concept and the processes must be tamperproof. 2) It must be invoked for every access attempt and must be impossible to circumvent. Thus, the security kernel must be implemented in a complete and foolproof way. 3) It must be small enough to be tested and verified in a complete and comprehensive manner.