01 - Flash Cards

Question 1

Computer Architecture

Answer 1

• Engineering branch primarily involved in designing and developing computer systems.

Question 2

Hardware

Answer 2

• Hardware refers to physical/tangible components of a computer.

Question 3

Processor

Answer 3

• It is a chip or set of chips that dictates and integrates all the major computer functions.

Question 4

Name Execution Types

Answer 4

• Multitasking
• Multicore
• Multiprocessing
• Multiprogramming
• Multithreading

Question 5

Multitasking

Answer 5

• Performing two or more tasks at the same time.

Question 6

Multicore

Answer 6

• Term used for today’s CPUs as their chips have multiple cores that work at the same time.

Question 7

Multiprocessing

Answer 7

• In computing, multiprocessing refers to the use of multiple CPUs in order to generate more power and perform multiple operations.

Question 8

What is Symmetric Multiprocessing?

Answer 8

• Several processors within a single computer are sharing the same operative system.

Question 9

What is Massively Parallel Processing?

Answer 9

• Processing that involves hundreds of processors using their own operating systems.

Question 10

Multiprogramming

Answer 10

• It is a rather obsolete form of parallel processing that uses a single processor to perform multiple tasks at the same time.
• Since there is only one processor, execution of these tasks is pseudo simultaneous.

Question 11

Multithreading

Answer 11

• In computing, it is a term that refers to several simultaneous tasks to be performed in a single process.

Question 12

Single State System

Answer 12

• System that processes only one security level at a given time.

Question 13

Multistate System

Answer 13

• System that processes several security levels at the same time.

Question 14

List Protection Mechanisms

Answer 14

• Protection Rings
• Operational State
• Security Mode

Question 15

Protection Rings

Answer 15

• Method by which code and operating system components are organized in concentric rings in order to separate levels of interaction and protect data.
• The highest privilege is within the innermost ring.

Question 16

Process States

Answer 16

• In computing it is a term that refers to different forms of operation in which processes are run and executed.

Question 17

List All The Possible States for A Running Process

Answer 17

• Ready State
• Waiting State
• Running State
• Supervisory State
• Stopped

Question 18

Ready State

Answer 18

• Process is ready to continue or begin.

Question 19

Waiting State

Answer 19

• Process is halted due to an external condition.

Question 20

Running State

Answer 20

• CPU is executing the process.

Question 21

Supervisory State

Answer 21

• State to be used when the process in order to ru requires higher privilege than its current.

Question 22

Stopped State

Answer 22

• Terminated process due to finishing the task or lacking the needed resources.

Question 23

Security Modes

Answer 23

• Modes created by the US government for processing classified data.

Question 24

Name Four Security Modes

Answer 24

• Dedicated Mode
• System High Mode
• Compartmented Mode
• Multilevel Mode

Question 25

What are the Two Operating Modes?

Answer 25

• User Mode
• Privileged Mode

Question 26

User Mode

Answer 26

• Basic mode for CPU operations in which only one part of the whole set of instructions is being run.
• This mode is designed to minimize potential accidental damage that can be created.

Question 27

Privileged Mode

Answer 27

• Basic mode for CPU operations in which the whole set of instructions is being run.

Question 28

Memory

Answer 28

• Collection of all data computer needs to keep in store.

Question 29

Read-Only Memory (ROM)

Answer 29

• Type of computer memory that cannot be modified.

Question 30

Programmable Read-Only Memory (PROM)

Answer 30

• Similar to ROM, but the program is not “burned in” rather it allows the final user to burn in the content later after which the content cannot be changed.

Question 31

Erasable Programmable Read-Only Memory

Answer 31

• It is a programmable read only memory programmable ROM that can be erased and reused.

Question 32

Electronically Erasable Programmable Read-Only Memory

Answer 32

• It is a programmable read only memory programmable ROM that can be erased by using electric voltage.

Question 33

Flash Memory

Answer 33

• Memory that can be erased electronically and subsequently rewritten.

Question 34

Random Access Memory

Answer 34

• It is a form of computer data storage that stores data and machine code currently being used.

Question 35

Real Memory

Answer 35

• Largest RAM storage.

Question 36

Cache RAM

Answer 36

• Cache RAM is a smaller, faster memory which stores copies of the data that are more likely to frequently used.

Question 37

Dynamic RAM

Answer 37

• It is a type of random access memory that stores each bit of data in a separate tiny capacitor that is contained within a circuit.

Question 38

Static RAM

Answer 38

• It is a type of random access memory that stores each bit using a flip flop device that represents a switch to be positioned from 1 to 0 or vice versa.

Question 39

Registers

Answer 39

• Limited CPU memory required for arithmetic-logical unit to operate.

Question 40

Memory Addressing

Answer 40

• Assigning memory address so that particular locations are easier to access.

Question 41

Register Addressing

Answer 41

• Assigning register address so that particular locations are easier to access..

Question 42

Immediate Addressing

Answer 42

• A way to refer to data while being provided to CPU in the form of instructions.

Question 43

Direct Addressing

Answer 43

• Supplying CPU with an actual memory location address.

Question 44

Secondary Memory

Answer 44

• Term that refers to memory storage on devices other than the CPU.

Question 45

Data Storage Devices

Answer 45

• Devices that store data that can be used on a computer.

Question 46

Primary Storage

Answer 46

• It essentially refers to RAM

Question 47

Secondary Storage

Answer 47

• Term that refers to memory storage on devices other than the CPU such as flash drives,CDs, DVDs.

Question 48

Volatile Storage

Answer 48

• Data storage devices created to lose the data like RAM.

Question 49

Nonvolatile Storage

Answer 49

• Data storage devices created to retain the data.

Question 50

Random Access Storage Devices

Answer 50

• Devices that let an operating system access the data stored at any point within the system.

Question 51

Sequential Storage Devices

Answer 51

• Devices that do not let an operating system access the data stored at any point within the system but rather all the data need to be processed until the desired point.

Question 52

Secondary Devices Storage Media Security Issues

Answer 52

• Data may remain on a secondary device even after being erased
• Secondary storage devices are prone to theft
• Access can be fairly easy for some devices

Question 53

Monitor Security

Answer 53

• Security of the data displayed on a monitor can be compromised by technologies such as TEMPEST.

Question 54

Printer Security

Answer 54

• Shared printers can lead to security problems as printout often may be forgotten.

Question 55

Keyboards/Mice Security

Answer 55

• Devices can be put into keyboards so that they record keystrokes and transmit them to a receiver.

Question 56

Modems Security

Answer 56

• There are numerous way by which unauthorized users can create access to a modem.

Question 57

Firmware

Answer 57

• Permanent software programmed into a read-only memory.

Question 58

BIOS

Answer 58

• Basic input/output system is a type of firmware microprocessor uses to get the computer system upon the computer is turned on.

Question 59

UEFI

Answer 59

• Unified Extensible Firmware Interface is a software interface between an operating system and hardware and it is expected to replace BIOS.

Question 60

Applets

Answer 60

• Small programs that work independently from their server.

Question 61

Name Two Applet Types

Answer 61

• Java Applets
• ActiveX Controls

Question 62

Local Caches

Answer 62

• Temporary stored information of a particular client.

Question 63

Data Flow Control

Answer 63

• Monitoring data transfer between processes, devices, and networks.

Question 64

Aggregation

Answer 64

• Combination of data records in order to gather more useful information.

Question 65

Inference

Answer 65

• Combination of nonsensitive data records in order to gather more useful information and get access to more sensitive information.

Question 66

Data Mining

Answer 66

• Analysing large databases in order to find certain correlations.

Question 67

Metadata

Answer 67

• A set of data that describes and gives information about other data.

Question 68

Data Analytics

Answer 68

• Examining large sets of data in order to extract useful information.

Question 69

Parallel Data Systems

Answer 69

• Computing systems that perform a great number of operations simultaneously.

Question 70

List Two Types of Parallel Data Processing

Answer 70

• Symmetric
• Asymmetric

Question 71

Host-Terminal Model

Answer 71

• Model where all functions and data are contained within one centralized system and users are physically distributed.

Question 72

Client-Server Models

Answer 72

• Model where users operate independent computers but can access resources on networks servers.

Question 73

Cloud Computing

Answer 73

• Type of computing that uses a network of remote servers on the Internet to store, manage, and process data instead of a local server.

Question 74

Hypervisor

Answer 74

• Is a virtual machine monitor (VMM) that creates and runs virtual machines.

Question 75

Private Cloud

Answer 75

• Cloud within an organization’s network that is separated from the internet.

Question 76

Public Cloud

Answer 76

• Cloud available to the general public on internet.

Question 77

Hybrid Cloud

Answer 77

Combination of private and public clouds.

Question 78

Community Cloud

Answer 78

• Cloud shared by a group of users or organizations.

Question 79

Grid Computing

Answer 79

• It is a computer network with a central management system in which each computer’s resources are shared with every other computer in the system.

Question 80

Peer to Peer Technologies

Answer 80

• Concept similar to grid computing, as the workload is shared among users.
• However, there is no central management system.

Question 81

The Internet of Things

Answer 81

• Concept that refers to interconnection computing devices embedded in everyday objects/appliances, enabling them to send and receive data over the internet.

Question 82

Industrial Control System

Answer 82

• Devices that manage industrial machines and processes.

Question 83

Metacharacters

Answer 83

• Characters that have a special meaning in programming that regular characters do not have.

Question 84

Directory Traversal

Answer 84

• Type of an attack that allows an attacker to access any part of the file/system once it is in a root directory.

Question 85

Command Injection

Answer 85

• It is a type of an attack in which the goal is execution of commands on the host operating system through a vulnerable application.

Question 86

Device Security

Answer 86

• Wide range of security features available on a mobile device.

Question 87

Remote Wiping

Answer 87

• In the context of security, it is the ability to delete data on a device remotely in case the device is stolen.

Question 88

Lockout

Answer 88

• Device gets locked out in case the user fails to provide correct authorized credentials after several attempts.

Question 89

Screen Locks

Answer 89

• Layer of security that prevents someone of just picking up the device and accessing its contents.

Question 90

What Does GPS Stand For?

Answer 90

• Global Positioning System

Question 91

Application Control

Answer 91

• Device management option that restricts applications that can be installed on a device.

Question 92

Storage Segmentation

Answer 92

• Artificial groping of data stored on a medium.

Question 93

Asset Tracking

Answer 93

• Management option used to track resources/inventory. Can be either active or passive.

Question 94

Inventory Control

Answer 94

• It is a set of hardware and software based tools that automate the process of tracking inventory.

Question 95

Mobile Device Management

Answer 95

• It is a term used to describe management of all mobile devices organization’s employees are using to access its resources.

Question 96

Device Access Control

Answer 96

• Term that encompasses passwords and storage encryption.

Question 97

Removable Storage

Answer 97

• Storage devices that can be physically removed from a mobile device such as a microSD card.

Question 98

List Ways in Which Application Security is Ensured

Answer 98

• Key Management
• Credential Management
• Authentication
• Geotagging
• Encryption
• Application Whistling

Question 99

Geotagging

Answer 99

• GPS on a mobile device allows for tagging of photos so one has to be aware of potential security issues due to this feature.

Question 100

Application Whistling

Answer 100

• It is a security option also known as deny by default as it blocks unauthorized application form operating on a mobile device.

Question 101

What Does BYOD Stand For?

Answer 101

• Bring Your Own Device.
• It refers to employees using their own devices to connect to organization’s network.

Question 102

What Does COPE Stand For?

Answer 102

• Company-owned, personally enabled devices.

Question 103

What Does CYOD Stand For?

Answer 103

• Choose your own device

Question 104

Antivirus Management

Answer 104

• Policy that dictates whether mobile antivirus programs can be installed on a mobile devices and which ones.

Question 105

Mobile Device On-boarding

Answer 105

• Installing all the security and management applications through secure settings.

Question 106

Mobile Device Off-boarding

Answer 106

• Removal of all the business related data from a mobile device.

Question 107

Embedded System

Answer 107

• Computer embedded in greater computer system

Question 108

Static System

Answer 108

• Refers to a static environment, static conditions that do not change. It is a system that is to stay unaltered by the administrators and users.

Question 109

Network Segmentation

Answer 109

• Network is isolated from all outside communications so communication happens only within segmented network users.

Question 110

When are Security Layers Used?

Answer 110

• They are when data that is being used belong to different classification levels

Question 111

Application Firewall

Answer 111

• It is a system filter that defines a set of communication rules for all the users.

Question 112

Network Firewall

Answer 112

• Device used for network filtering.

Question 113

Wrapper

Answer 113

• It is program used provide a layer of security to computer services and determine whether the service is authorized to execute..

Question 114

Five Types of Technical Mechanisms

Answer 114

1. Layering
2. Abstraction
3. Data Hiding
4. Process Isolation
5. Hardware Segmentation

Question 115

List Policy Mechanisms

Answer 115

• Principle of Least Privilege
• Separation of Privilege
• Accountability

Question 116

Covert Channels

Answer 116

• Paths that are not normally used in communication

Question 117

List Two Types of Cover Channels

Answer 117

• Covert Timing Channels
• Covert Storage Channel

Question 118

Overt Channels

Answer 118

• Known and expected channel of communication.

Question 119

Trusted Recovery

Answer 119

• System that ensures that all security controls remain intact in case of an attack.

Question 120

Maintenance Hooks

Answer 120

• Entrance points into a system with which only developer is familiar with.

Question 121

Incremental Attacks

Answer 121

• Security attacks that happen in a gradual fashion.

Question 122

Data Diddling

Answer 122

• Attacker enter a system and makes small gradual changes.

Question 123

Salami Attacks

Answer 123

• Salami attack refers to small attacks add up to one major attack that can go undetected.