Eccouncil Exam 312-85 Topic 6 Question 29 Discussion

Actual exam question for Eccouncil's 312-85 exam

Question #: 29
Topic #: 6

Andrews and Sons Corp. has decided to share threat information among sharing partners. Garry, a threat analyst, working in Andrews and Sons Corp., has asked to follow a trust model necessary to establish trust between sharing partners. In the trust model used by him, the first organization makes use of a body of evidence in a second organization, and the level of trust between two organizations depends on the degree and quality of evidence provided by the first organization.

Which of the following types of trust model is used by Garry to establish the trust?

AMediated trust

BMandated trust

CDirect historical trust

DValidated trust

Show Suggested Answer

Suggested Answer: D

In the trust model described, where trust between two organizations depends on the degree and quality of evidence provided by the first organization, the model in use is 'Validated Trust.' This model relies on the validation of evidence or credentials presented by one party to another to establish trust. The validation process assesses the credibility, reliability, and relevance of the information shared, forming the basis of the trust relationship between the sharing partners. This approach is common in threat intelligence sharing where the accuracy and reliability of shared information are critical. Reference:

'Building a Cybersecurity Culture,' ISACA

'Trust Models in Information Security,' Journal of Internet Services and Applications

by Leslie at May 02, 2025, 03:07 PM

Limited Time Offer

25%

1 months ago

I think the answer is C) Direct historical trust. The question mentions that the level of trust depends on the degree and quality of evidence provided by the first organization, which aligns with the concept of direct historical trust.

upvoted 0 times

Serita

2 days ago

I think the answer is C) Direct historical trust.

upvoted 0 times

...