4) Auditing and Accountability Flashcards
Evidence exists where an individual is unable to deny he or she has made a statement or taken action.
Nonrepudiation
Monitors and reports malicious events.
Intrusion detection
Alarms and takes actions when malicious events occur.
Intrusion prevention
Penalizes for acting against the rules.
Deterrence
What document do courts require for admissibility of records?
Chain of custody
An employee is charged with fraud, and the company can prove in court that there are email transactions showing that the employee completed these using a digital signature. What term is being described?
Nonrepudiation
The primary means to ensure accountability through technical means.
Auditing
This provides us with the means to trace activities in our environment back to their source.
Accountability
Refers to a situation in which sufficient evidence exists as to prevent an individual from successfully denying that he or she has made a statement, or taken an action.
Nonrepudiation
Refers to elements that discourage or prevent misbehavior in out environments.
Deterrence
A monitoring tool that alerts when an attack or other undesirable activity is taking place.
IDS
An IDS is a monitoring tool that alerts when an attack or other undesirable activity is taking place. What does IDS stand for?
Intrusion detection system
A tool that can take action based on what is happening in the environment.
IPS
An IPS is a tool that can take action based on what is happening in the environment. What does IPS stand for?
Intrusion prevention system
A methodical examination and review that ensures accountability through technical means.
Auditing