Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

CSY3062 - Cybersecurity and Applied Cryptography > 3. Concepts of Security > Flashcards

3. Concepts of Security Flashcards

1
Q

What are the 4 security attacks?

A
  1. Interruption - attack on availability.
  2. Interception - attack on confidentiality
  3. Modification - attack on integrity.
  4. Fabrication - attack on authenticity.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What are the threat consequences?

A
  • Unauthorized disclosure of data.
  • Deception
  • Disruption
  • Usurpation (misuse)
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is a passive attack?

A

A passive attack is where the perpetrator only listens in to data / communications and does not interupt the normal flow of data / systems.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is an active attack?

A

An active attack is an attack where the malicious actor interrupts the normal flow of data / operation of a system.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What are countermeasures?

A

Countermeasures are any means used to deal with security attacks. Countermeasures may result in new vulnerabilties and the main goal is to minimize risk given constraints.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is computer security?

A

Computer security is the protection afforded to an automated system in order to attain the applicable objectives of preserving the integrity, availability and confidentiality of computer systems.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is a security service?

A

A security service is a service to enhance the security of data processing systems and information transfers of an organization. They are intended to counter security attacks using one or more security mechanisms which often replicates functions normally associaiated with physical documents (such as signatures, dates, etc).

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What is the X.800 model?

A
  • Authentication - assurance that communicating entity is the one claimed.
  • Access control - prevention of the unauthorized use of a resource
  • Data confidentiality - protection of data from unauthorized disclosure.
  • Data Integrity - assurance that the data received is as sent by an authorized entity.
  • Non-repudiation - protection against denial by one of the parties in a communication.
  • Availability - resource accessible / usable.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What methods of defence can be implemented?

A
  • Encryption
  • Software controls (access limitations in database etc.)
  • Hardware controls (e.g. smartcard)
  • Policies (e.g, password changes)
  • Physical controls
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q
A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly

CSY3062 - Cybersecurity and Applied Cryptography (6 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2025 Bold Learning Solutions. Terms and Conditions