1 - Intro

Question 1

What is the Computer Misuse Act (1990)?

Answer 1

1. Unauthorised access to computer material
2. Unauthorised access with intent to commit or facilitate a crime
3. Unauthorised modification of computer material.
4. Making, supplying or obtaining anything which can be used in computer misuse offences.

Question 2

What are some definitions of Cyber Security / defence?

Answer 2

“..prevention and detection of unauthorised actions by users of a computer system” – Deiter Gollman

“the prevention and detection of unauthorized actions by users of a computer” - Microsoft

Question 3

What is CIA?

Answer 3

Confidentiality
– Prevention of unauthorised disclosure of information

Integrity
– Prevention of unauthorised modification of
information

Availability
– Prevention of unauthorised withholding of information or resources

Question 4

What is a vulnerability?

Answer 4

Part of a system that can be exploited

Question 5

What is a threat?

Answer 5

Potential exploitation of a vulnerability

Question 6

What is an attack?

Answer 6

Attempted violation of a vulnerability

Question 7

What are some common threats?

Answer 7

Hackers - white, black, grey

Script Kiddies

Insiders (Snowden)

Spies - NSA, GCHQ

Question 8

What is the motivation behind attacks?

Answer 8

Money

Bragging

Steal, alter or delete data

Revenge

Question 9

Can some events appear as an attack?

Answer 9

Odeon cinema site went down as too many booking tickets for Star Wars

Question 10

What are some types of attacks?

Answer 10

Active and Passive