2. Accountability

Question 1

What does accountability depend on?

Answer 1

Depends on Identification, Authentication, and Access Control being present

Question 2

Nonrepudiation

Answer 2

Sufficient evidence exists as to prevent an individual from successfully denying that they have made a statement/taken action

Question 3

I.D.S.es (Detection)

Answer 3

Performs strictly as a monitoring an alert tool

Question 4

I.P.S.es (Intrusion Prevention)

Answer 4

Can take action based on what’s happening in the environment

Question 5

Auditing

Answer 5

Tend to look at access to or from systems and extends to physical security

Question 6

Logging

Answer 6

History of activities that have taken place in the environment

Question 7

Monitoring

Answer 7

Subset of auditing. To discover undesirable conditions such as failures, resource shortages, security issues, and trends. REACTIVE ACTIVITY

Question 8

Vulnerability Assessments

Answer 8

Vulnerability scanning tools used to scan to see which ports are open to them then interrogate each to find which service is listening on the port.

Question 9

Vulnerability Scanning tool Exs

Answer 9

Nessus and Qualys

Question 10

Penetration Teseting

Answer 10

Goes further than Vulnerability scanning tools by mimicking the techniques an actual attacker would use.

Question 11

G.L.B. Standards

Answer 11

Gramm-Leech-Bliley Standards. Apply to financial entity policies

Question 12

B.S.A.

Answer 12

Business Software Alliance. Regularly audits companies for licensing requirements.

Question 13

What is a disadvantage of logging?

Answer 13

Resources