CMPT 280 - Overview and Networks Exam 100% Verified
CIA - Answer Confidentiality, Integrity, Availability
Confidentiality - Answer Preserving authorized restrictions on information access and
disclosure
Integrity - Answer Guarding against improper information modification or destruction.
availability - Answer Ensuring timely and reliable access to and use of information
adversary (threat agent) - Answer entity with the intent of detrimental activities
attack - Answer Any kind of malicious activity that attempts to collect, disrupt, deny,
degrade, or destroy information system resources or the information itself.
countermeasure - Answer aims to impair undesirable activity
risk - Answer measure of the extent to which an entity is threatened by a potential
activity.
security policy - Answer set of criteria for the provision of security services
system resource (asset) - Answer A major application, general support system, high
impact program, physical plant, mission critical system, personnel, equipment, or a
logically related group of systems.
threat - Answer something with the potential to negatively affect operations due to
, undesirable activity.
vulnerability - Answer weakness that could be exploited
hardware - Answer Asset. Physical components. Computer systems, communication
devices, data storage.
software - Answer Asset. Operating system, utilities, and applications
data - Answer Asset. Files, databases
communication facilities and networks - Answer Asset. Network communication links,
bridges, routers.
Corrupted - Answer Loss of integrity. Does the wrong thing or gives wrong answers.
Leaky - Answer Loss of confidentiality. Giving unauthorized access to data.
Unavailable - Answer Loss of availability. Becomes very slow.
Unauthorized Disclosure - Answer Confidentiality threat. Entity gains access to
unauthorized data.
Exposure - Answer Unauthorized Disclosure. Sensitive data is directly released.
Interception - Answer Unauthorized Disclosure. An unauthorized entity accesses data
travelling between sources.
Inference - Answer Unauthorized Disclosure. Entity indirectly gains access from
CIA - Answer Confidentiality, Integrity, Availability
Confidentiality - Answer Preserving authorized restrictions on information access and
disclosure
Integrity - Answer Guarding against improper information modification or destruction.
availability - Answer Ensuring timely and reliable access to and use of information
adversary (threat agent) - Answer entity with the intent of detrimental activities
attack - Answer Any kind of malicious activity that attempts to collect, disrupt, deny,
degrade, or destroy information system resources or the information itself.
countermeasure - Answer aims to impair undesirable activity
risk - Answer measure of the extent to which an entity is threatened by a potential
activity.
security policy - Answer set of criteria for the provision of security services
system resource (asset) - Answer A major application, general support system, high
impact program, physical plant, mission critical system, personnel, equipment, or a
logically related group of systems.
threat - Answer something with the potential to negatively affect operations due to
, undesirable activity.
vulnerability - Answer weakness that could be exploited
hardware - Answer Asset. Physical components. Computer systems, communication
devices, data storage.
software - Answer Asset. Operating system, utilities, and applications
data - Answer Asset. Files, databases
communication facilities and networks - Answer Asset. Network communication links,
bridges, routers.
Corrupted - Answer Loss of integrity. Does the wrong thing or gives wrong answers.
Leaky - Answer Loss of confidentiality. Giving unauthorized access to data.
Unavailable - Answer Loss of availability. Becomes very slow.
Unauthorized Disclosure - Answer Confidentiality threat. Entity gains access to
unauthorized data.
Exposure - Answer Unauthorized Disclosure. Sensitive data is directly released.
Interception - Answer Unauthorized Disclosure. An unauthorized entity accesses data
travelling between sources.
Inference - Answer Unauthorized Disclosure. Entity indirectly gains access from