Comprehensive Questions (Frequently Tested)
What is information security (InfoSec)? - ANSWERThe practice of protecting
information from unauthorized access, disclosure, disruption, destruction, or
modification.
What is the goal of information security? - ANSWERTo preserve
confidentiality, integrity, and availability of information.
What are the three principles of the CIA triad? - ANSWERConfidentiality,
Integrity, Availability.
What does confidentiality ensure? - ANSWERInformation is only disclosed or
accessible to authorized users.
Which CIA principle is violated when sensitive data is leaked? -
ANSWERConfidentiality.
Which CIA principle is violated when data is emailed to the wrong recipient? -
ANSWERConfidentiality.
Which CIA principle is violated when patient records are posted publicly? -
ANSWERConfidentiality.
, Name common confidentiality controls. - ANSWEREncryption, authentication,
access controls, policies, training, physical locks.
Does encryption primarily protect confidentiality, integrity, or availability? -
ANSWERConfidentiality.
Is accidental disclosure a confidentiality breach? - ANSWERYes.
What does integrity ensure? - ANSWERInformation cannot be modified in an
unauthorized manner.
Which CIA principle is violated when data is altered without permission? -
ANSWERIntegrity.
Which CIA principle is violated when malware corrupts a file? -
ANSWERIntegrity.
What security mechanism detects unauthorized data changes? -
ANSWERHashing.
Do digital signatures protect integrity, confidentiality, or availability? -
ANSWERIntegrity.
What is a transaction log used for? - ANSWERPreserving and restoring data
integrity.