1.1 Understanding the CIA Triad

Question 1

What is the CIA Triad? Why is it important?

Answer 1

This the confidentiality, integrity, and availability triad. It is the fundamental security issue. All policy revolves around addressing the triad.

Question 2

C - in the CIA Triad. What’s it do? What is it for? What is the biggest threat if C is comprimised?

Answer 2

Confidentiality, keeping resources and secrets safe. No one but the intended receiver should have access to the resources being sent.

Encryption is an example of something address confidentiality.

Unauthorized access to resources. Unintended disclosure. HIPPA is another good example.

Question 3

What is the relationship between subjects and objects as it pertains to security? What is the relationship known as?

Answer 3

The relationship is access control. The object is the passive resource, a file for example. The subject is the person trying to interact with object, i.e. access the file.

Computers, programs, or people can be subjects.

Balancing this relationship is controlling access to objects through limiting the powers of a the subjects.

Question 4

What type of attacks affect C?

Answer 4

The ones that focus on decrpyting data or obtaining credentials to access restricted content. Network sniffing, social engineering, port scanning, escalation of privileges.

Question 5

What types of negligence affect C?

Answer 5

Leaving open security access points, giving passwords out to unauthorized personnel, failing to authenticate a system before transferring data

Question 6

What is object I and how does it relate to C?

Answer 6

Object integrity is the inability of an object to be modified without permission. If you can edit anything, whether or not the information is confidential is irrelevant.

Question 7

What is sensitivity as it relates to C?

Answer 7

It is the quality of the data. So social security numbers is far more sensitive data than publicly available info like an address.

Question 8

What is discretion?

Answer 8

A chance for an operator to intervene in the disclosure of information. Giving permission might be an example.

Question 9

Concealment

Answer 9

Security through obscurity. Maybe something like hiding in plain sight. Not particularly useful. A real example would be not publishing where your data center is anywhere, making it difficult to locate.

Question 10

What is integrity? What does it prevent? Why is it important?

Answer 10

Limiting the ability to modify data to only authorized personnel. This prevents viruses and other malicious software from making changes to data. It also prevents mistakes from employees.

Maintaining consistency of data is everything. Data has to be accurate and verifiable. It has to be crosschecked with other data to ensure validity.

Question 11

Parts of integrity - Accuracy

Answer 11

Being correct and precise

Question 12

Truthfulness

Answer 12

Being accurate to the real world

Question 13

Authenticity

Answer 13

Being authentic or genuine

Question 14

Validity

Answer 14

Being factual or logically sound

Question 15

Nonrepuditation

Answer 15

Being unable to deny a change was made. Important in tracking mistakes and abused vulnerabilities

Question 16

Accountability

Answer 16

Being responsible for the result

Question 17

Responsibility

Answer 17

Being in charge of something

Question 18

Completeness

Answer 18

Having all needed and necessary components or parts

Question 19

Comprehensiveness

Answer 19

Being complete in scope

Question 20

What is the A in CIA Triad? Why is it important?

Answer 20

Authorized subjects are granted timely and unlimited access to objects. Making sure devices are not so secure that they are unavailable to the users who need them.