Fundamentals
of Information
Fundamentals
of Security
Information
–
of Security
Information
Core Principles
–Security
CoreofPrinciples
Cybersecurity,
– CoreofPrinciples
Cybersecurity,
Risk Management
of Cybersecurity,
Risk Management
and Data
Risk Protection
Management
and DataStudy
Protection
andGuide.pdf
DataStudy
Protection
Guide.pdf
Study Guide.pdf
Fundamentals of
Information
Security – Core
Principles of
Cybersecurity,
Risk Management
and Data
Protection Study
Guide
Fundamentals
Fundamentals
of Information
Fundamentals
of Security
Information
–
of Security
Information
Core Principles
–Security
CoreofPrinciples
Cybersecurity,
– CoreofPrinciples
Cybersecurity,
Risk Management
of Cybersecurity,
Risk Management
and Data
Risk Protection
Management
and DataStudy
Protection
andGuide.pdf
DataStudy
Protection
Guide.pdf
Study Guide.pdf
,Fundamentals of Information Security.pdf Fundamentals of Information Security.pdf Fundamentals of Information Security.pdf
Controls that protect the systems, networks, and Logical Controls
environments that process, transmit, and store our data
are called _______.
During what phase of the incident response process do Post-Incident Activity
we determine what happened, why it happened, and
what we can do to keep it from happening again?
Something that has the potential to cause harm to our Threat
assets is known as a(n) ________.
What is the first and arguably one of the most important Identify assess
steps of the risk management process?
The Fabrication attack type most commonly affects Integrity and Availability
which principle(s) of the CIA triad?
The Interception attack type most commonly affects Confidentiality
which principle(s) of the CIA triad?
A badge or token is considered what type of Something you have
authentication?
A password or PIN is considered what type of Something you know
authentication?
Fundamentals of Information Security.pdf Fundamentals of Information Security.pdf Fundamentals of Information Security.pdf
,Fundamentals of Information Security.pdf Fundamentals of Information Security.pdf Fundamentals of Information Security.pdf
The set of methods we use to establish a claim of identity Authentication
as being true is called ______.
A fingerprint is considered what type of authentication? Something you are
What type of authentication can prevent a man-in-the- Mutual
middle attack?
The biometric characteristic that measures how well a Permanence
factor resists change over time and with advancing age is
called __________
What dictates that we should only allow the bare Principle of least privilege
minimum of access, as needed?
Access controls are policies or procedures used to True
control access to certain items.
What is implemented through the use of access Authorization
controls?
Which answer best describes the authorization Authorization is the process of determining who is approved for access and what
component of access control? resources they are approved for.
Fundamentals of Information Security.pdf Fundamentals of Information Security.pdf Fundamentals of Information Security.pdf
, Fundamentals of Information Security.pdf Fundamentals of Information Security.pdf Fundamentals of Information Security.pdf
A client-side attack that involves the attacker placing an Clickjacking
invisible layer over something on a website that the user
would normally click on, in order to execute a command
differing from what the user thinks they are performing, is
known as ___________.
What type of access control can prevent the confused Capability-based security
deputy problem?
A user who creates a network share and sets permissions Discretionary access control
on that share is employing which model of access
control?
A VPN connection that is set to time out after 24 hours is Attribute-based access control
demonstrating which model of access control?
Confidential Services Inc. is a military-support branch Mandatory access control
consisting of 1,400 computers with Internet access and
250 servers. All employees are required to have security
clearances. From the options listed below, what access
control model would be most appropriate for this
organization?
What is information security? Protecting information and information systems from unauthorized access, use,
disclosure, disruption, modification, or destruction.
Fundamentals of Information Security.pdf Fundamentals of Information Security.pdf Fundamentals of Information Security.pdf