WGU D430 FUNDAMENTALS OF INFORMATION SECURITY EXAM OBJECTIVE ASSESSMENT NEWEST 2024 TEST BANK ACTUAL EXAM 300 QUESTIONS AND CORRECT DETAILED ANSWERS (VERIFIED ANSWERS) |ALREADY GRADED A+

WGU D430 FUNDAMENTALS OF INFORMATION
SECURITY EXAM OBJECTIVE ASSESSMENT
NEWEST 2024 TEST BANK ACTUAL EXAM 300
QUESTIONS AND CORRECT DETAILED ANSWERS
(VERIFIED ANSWERS) |ALREADY GRADED A+
Define the confidentiality in the CIA triad. - answers Our ability to protect data from
those who are not authorized to view it.

Examples of confidentiality - answers A patron using an ATM card wants to keep
their PIN number confidential.
An ATM owner wants to keep bank account numbers confidential.

How can confidentiality be broken? - answers Losing a laptop
An attacker gets access to info
A person can look over your shoulder

Define integrity in the CIA triad. - answers The ability to prevent people from
changing your data and the ability to reverse unwanted changes.

How do you control integrity? - answers Permissions restrict what users can do
(read, write, etc.)

Examples of integrity - answers Data used by a doctor to make medical decisions
needs to be correct or the patient can die.

Define the availability in the CIA triad. - answers Our data needs to be accessible
when we need it.

How can availability be broken? - answers Loss of power, application problems. If
caused by an attacker, this is a Denial of Service attack.

Define information security. - answers The protection of information and information
systems from unauthorized access, use, disclosure, disruption, modification, or
destruction in order to provide confidentiality, integrity, and availability.

Define the Parkerian Hexad and its principles. - answers The Parkerian Hexad
includes confidentiality, integrity, and availability from the CIA triad. It also includes
possession (or control), authenticity, and utility.

Authenticity - answers Whether the data in question comes from who or where it
says it comes from (i.e. did this person actually send this email?)

Confidentiality is affected by what type of attack? - answers Interception (eaves
dropping)

Integrity is affected by what type of attacks? - answers Interruption (assets are
unusable), modification (tampering with an asset), fabrication (generating false data)

, WGU D430 FUNDAMENTALS OF INFORMATION
SECURITY EXAM OBJECTIVE ASSESSMENT
NEWEST 2024 TEST BANK ACTUAL EXAM 300
QUESTIONS AND CORRECT DETAILED ANSWERS
(VERIFIED ANSWERS) |ALREADY GRADED A+
Authenticity is affected by what type of attacks? - answers Interruption (assets are
unusable), modification (tampering with an asset), fabrication (generating false data)

Utility - answers How useful the data is to you (can be a spectrum, not just yes or
no)

Possession - answers Do you physically have the data in question? Used to
describe the scope of a loss

Identify the four types of attacks - answers interception, interruption, modification,
and fabrication

Interception attacks - answers Make your assets unusable or unavailable

Interruption attacks - answers cause assets to become unusable or unavailable for
our use, on a temporary or permanent basis

Modification attacks - answers Tampering with an asset

Fabrication attacks - answers Generating data, process, and communications

Define the risk management process - answers 1. Identify assets
2. Identify threats
3. Assess vulnerabilities
4. Assess risks
5. Mitigate risks

Define the incident response process and its stages. - answers Preparation
Detection and analysis
Containment
Eradication
Recovery

Preparation in incident response - answers creating policies and procedures

Detection in incident response - answers Using tools and humans to decide if an
incident is an incident

Defense in Depth - answers employing multiple layers of controls to avoid a single
point of failure

Identify types of controls to mitigate risk - answers physical, logical, administrative