29. Data Protection Flashcards

1
Q

Data Protection

Digital Rights Management (DRM)

A

Technology to protect copyrighted digital media

  • Encryption
  • Permissions management i.e. serial numbers, limited installs, IP address, VPN
  • Copy restrictions - prevent copying, saving, screenshots
  • Persistent authentication and audit trails - must be logged in all the time to access program
  • Tracking i.e. watermarks
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Data Protection

Cloud Access Security Broker
(CASB)

A

Sit between users and cloud applications

  • Monitor user activity
  • Warn admins about malicious actions
  • Malware prevention
  • Protect against shadow IT
  • Enforce security policy compliance
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Data Protection

Data Loss Prevention
(DLP)

A

Data Loss vs Data leak
Data in use, in transit, at rest
Network and Endpoint DLP

  • Network DLP - data in transit
  • Endpoint DLP - Data in use, data at rest
  • Before doing DLP on endpoints, you need to understand the data i.e. label and tag it
  • DLP systems try to identify and prevent sensitive data leaving your network
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Data Protection

Data Loss Prevention
Loss

A

Data on a laptop and only on laptop and laptop is stolen, this is data loss

  • we have lost the data and access to that data
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Data Protection

Data Loss Prevention
Leak

A

Data on a laptop and only on a laptop and laptop is hacked, someone downloads the data, this is a data leak

  • we still have access to the data, but so does the attacker
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Data Protection

Data Loss Prevent
Data At Rest

A

Ensure correct access control
Keep it only as long as required

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Data Protection

Data Loss Prevent
Data in transit

A

Having brokers that determine if the data should be leaving the network
If it is leaving the network ensuring that it does so securely

  • DLP system detecting that data is being transmitted unencrypted out of the network
    *
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Data Protection

Data Loss Prevent
Data in use

A

Applications may include controls to prevent user doing something with the data they should not

  • Most actions by users that put data or company at risk are unintentional
How well did you know this?
1
Not at all
2
3
4
5
Perfectly