1.2 Security Goals & Controls Flashcards

1
Q

CIA Triad:

A

Confidentiality: Protecting information from unauthorized access.
Integrity: Ensuring information is accurate and complete.
Availability: Ensuring information is accessible when needed.
Non-Repudiation: Proving that a specific action was performed by a specific individual.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Authentication, Authorization, and Accounting (AAA)

A

Authentication: Verifying the identity of a user or device.
Knowledge-based: Passwords, PINs
Possession-based: Smart cards, tokens
Inherence-based: Biometrics (fingerprint, facial recognition)
Authorization: Granting permissions to access resources.
Accounting: Tracking user activity and resource usage.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Security Control Categories

A

Technical Controls: Security measures implemented through technology.
Firewalls, intrusion detection systems, encryption, etc.
Administrative Controls: Policies, procedures, and guidelines.
Access control policies, security awareness training, incident response plans.
Physical Controls: Physical safeguards to protect hardware and facilities.
Locks, security guards, surveillance cameras, environmental controls.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q
A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly