3.3

Question 1

Data protection

Answer 1

safeguarding info from corruption conpromise and loss

Question 2

Data classification types

Answer 2

sensitive
confidential
public
restricted
private
critical information

Question 3

Sensitive Data

Answer 3

info that if accessed by unauthorized persons can result in the loss of security or competitive advantage of a company

Question 4

Commercial Business Classification Levels

Answer 4

Public
sensitive
private
confidential
critical information

Question 5

Government classification levels

Answer 5

unclassified
sensitive but classified
confidential
secret
top secret

Question 6

Data ownership

Answer 6

process of identifying the individual responsible for maintaining confidentiality integrity avilability and privacy of info assets

Question 7

Data States

Answer 7

at rest (stored in databases, file systems not moving)
in transit (actively moving)
in use(being created, retrieved, updated or deleted)

Question 8

Encrypting data at rest

Answer 8

full disk, partition, file, volumne, database, record

Question 9

Encrypting data in transit

Answer 9

SSL and TLS used between apps
VPN
IPSec used between network devices

Question 10

IPSec

Answer 10

internet security protocol secures IP communications by authenticating and encrypting IP packets

Question 11

Data types

Answer 11

regulated
PII
PHI
Trade Secrets
IP
LEgal info
Financial info
Human readable data
non human readable data

Question 12

Regulated data

Answer 12

controleld by laws and compliance requirements like GDPR and HIPPA

Question 13

GDPR

Answer 13

general data protection regulation
protects EU citizen data
compliance required regardless of location

Question 14

PII

Answer 14

personally identification information
names, SSN, addresses

Question 15

PHI

Answer 15

personal health info
protected under hippa

Question 16

Trade Secrets

Answer 16

confidential business info giving a competitive edge
legally protected

Question 17

Financial information

Answer 17

sales records, tax documents, bank statements

Question 18

Human Readable data

Answer 18

understandable by humans text docs spreadsheetsno

Question 19

non human readable data

Answer 19

binary code machine language
contains sensitive information

Question 20

Data soverignty

Answer 20

digital info subject to laws of the country where its located
inportant in cloud computing

Question 21

Geofencing

Answer 21

securing data based on location

Question 22

Tokenization

Answer 22

replace sensitive data with non sensitive tokens
original data stored securely in a separate database
often used for payment processing for cc protection

exmaple you dont store passwords in regular database you store the hash

Question 23

Obfuscation

Answer 23

make data unclear by encrypting, masking etc

Question 24

segmentation

Answer 24

divide network into segments with unique security controls
prevent lateral movement