WGU C836 OA Study Guide EXAM NEWEST 2025-2026
COMPLETE QUESTIONS AND CORRECT DETAILED
ANSWERS (VERIFIED ANSWERS) |ALREADY GRADED
A+||BRAND NEW VERSION!!
Availability - CORRECT ANSWER- refers to the ability to access our data when we need
it. Loss of availability can refer to a wide variety of breaks anywhere in the chain
that allows us access to our data. Such issues can result from power loss,
operating system or application problems, network attacks, compromise of a
system, or other problems. When such issues are caused by an outside party, such
as an attacker, they are commonly referred to as a denial of service (DoS) attack.
Possession or Control - CORRECT ANSWER- Refers to the physical disposition of the
media on which the data is stored. This enables us, without involving other
factors such as availability, to discuss our loss of the data in its physical medium
An example is data store be on multiple devices and there could be numerous
versions.
Authenticity - CORRECT ANSWER- Attribution as to the owner or creator of the data in
question.
,Authenticity can be enforced through the use of digital signatures.
Utility - CORRECT ANSWER- Refers to how useful the data is to us.
Interception - CORRECT ANSWER- Interception attacks allow unauthorized users to
access our data, applications, or environments and are primarily an attack against
confidentiality. Interception might take the form of unauthorized file viewing or
copying, eavesdropping on phone conversations, or reading e-mail, and can be
conducted against data at rest or in motion. Properly executed, interception
attacks can be very difficult to detect.
Affects Confidentiality
Interruption - CORRECT ANSWER- Interruption attacks cause our assets to become
unusable or unavailable for our use, on a temporary or permanent basis.
Interruption attacks often affect availability but can be an attack on integrity as
well. In the case of a DoS attack on a mail server, we would classify this as an
availability attack.
Affects Integrity and availability
Modification - CORRECT ANSWER- Modification attacks involve tampering with our
asset. If we access a file in an unauthorized manner and alter the data it contains,
we have affected the integrity of the data contained in the file.
, Fabrication - CORRECT ANSWER- Fabrication attacks involve generating data, processes,
communications, or other similar activities with a system. Fabrication attacks
primarily affect integrity but could be considered an availability attack as well. If
we generate spurious information in a database, this would be considered to be a
fabrication attack.
Affects Integrity and Availability
Threat - CORRECT ANSWER- Something that has potential to cause harm
Vulnerability - CORRECT ANSWER- Weaknesses that can be used to harm us
Risk - CORRECT ANSWER- Likeliness that something bad will happen
Impact - CORRECT ANSWER- The value of the asset is used to assess if a risk is present
Something you know - CORRECT ANSWER- Password or PIN
Something you are - CORRECT ANSWER- An authentication factor using biometrics, such
as a fingerprint scanner.
Something you have - CORRECT ANSWER- Authentication factor that relies on
possession (FOB, Card, Cell Phone, Key)
COMPLETE QUESTIONS AND CORRECT DETAILED
ANSWERS (VERIFIED ANSWERS) |ALREADY GRADED
A+||BRAND NEW VERSION!!
Availability - CORRECT ANSWER- refers to the ability to access our data when we need
it. Loss of availability can refer to a wide variety of breaks anywhere in the chain
that allows us access to our data. Such issues can result from power loss,
operating system or application problems, network attacks, compromise of a
system, or other problems. When such issues are caused by an outside party, such
as an attacker, they are commonly referred to as a denial of service (DoS) attack.
Possession or Control - CORRECT ANSWER- Refers to the physical disposition of the
media on which the data is stored. This enables us, without involving other
factors such as availability, to discuss our loss of the data in its physical medium
An example is data store be on multiple devices and there could be numerous
versions.
Authenticity - CORRECT ANSWER- Attribution as to the owner or creator of the data in
question.
,Authenticity can be enforced through the use of digital signatures.
Utility - CORRECT ANSWER- Refers to how useful the data is to us.
Interception - CORRECT ANSWER- Interception attacks allow unauthorized users to
access our data, applications, or environments and are primarily an attack against
confidentiality. Interception might take the form of unauthorized file viewing or
copying, eavesdropping on phone conversations, or reading e-mail, and can be
conducted against data at rest or in motion. Properly executed, interception
attacks can be very difficult to detect.
Affects Confidentiality
Interruption - CORRECT ANSWER- Interruption attacks cause our assets to become
unusable or unavailable for our use, on a temporary or permanent basis.
Interruption attacks often affect availability but can be an attack on integrity as
well. In the case of a DoS attack on a mail server, we would classify this as an
availability attack.
Affects Integrity and availability
Modification - CORRECT ANSWER- Modification attacks involve tampering with our
asset. If we access a file in an unauthorized manner and alter the data it contains,
we have affected the integrity of the data contained in the file.
, Fabrication - CORRECT ANSWER- Fabrication attacks involve generating data, processes,
communications, or other similar activities with a system. Fabrication attacks
primarily affect integrity but could be considered an availability attack as well. If
we generate spurious information in a database, this would be considered to be a
fabrication attack.
Affects Integrity and Availability
Threat - CORRECT ANSWER- Something that has potential to cause harm
Vulnerability - CORRECT ANSWER- Weaknesses that can be used to harm us
Risk - CORRECT ANSWER- Likeliness that something bad will happen
Impact - CORRECT ANSWER- The value of the asset is used to assess if a risk is present
Something you know - CORRECT ANSWER- Password or PIN
Something you are - CORRECT ANSWER- An authentication factor using biometrics, such
as a fingerprint scanner.
Something you have - CORRECT ANSWER- Authentication factor that relies on
possession (FOB, Card, Cell Phone, Key)
