Access Control

Question 1

Access Control Lists (ACLs)

Answer 1

Provide an easy method for specifying which users, or subjects, are allowed to access which object (ie. files).

Question 2

Application- Based IDS (AIDS)

Answer 2

Analyze what’s going on in an application using the application’s transition log files.

Question 3

Compartmentalized information

Answer 3

This is information that requires a special authorization beyond the normal classification system.

Question 4

Compensating controls

Answer 4

These controls reinforce or replace normal controls that are unavailable for any reason.

Question 5

Corrective Controls

Answer 5

These controls remedy the circumstances that enables the unwanted activity, and/or return conditions to where they were prior to the unwanted activity.

Question 6

Crossover Error Rate (CER)

Answer 6

As the sensitivity of the biometric system is adjusted, FAR & FRR values change inversely.

Question 7

Detective controls

Answer 7

These controls identify, log, and alert management to unwanted actions or events, as or after they occur.

Question 8

Deterrent controls

Answer 8

These controls prescribe some sort of punishment, ranging from embarrassment to job termination or jail time for noncompliance. Their intent is to dissuade people from performing unwanted acts.

Question 9

Directive controls

Answer 9

Those controls dictated by organizational and legal authorities.

Question 10

Discretionary Access Control (DAC)

Answer 10

A means of restricting access to objects based on the identity of subjects and/or groups to which they belong.

Question 11

False Rejection Rate (FRR), Type I Error

Answer 11

Authentication fails when it should not. This happens when an authorized person is denied access.

Question 12

False Acceptance Rate (FAR), Type II Error

Answer 12

Authentication is successful when it should not be. This happens when an unauthorized person is granted access. This may happen because the biometric system cannot distinguish between the biometric signatures of different people. This is the far more serious of the two error conditions.

Question 13

Host-Based IDS (HIDS)

Answer 13

Analyze information from a single computer and consequently offer greater precision and reliability and can show the results of an attack.

Question 14

Intrusion Detection Systems (IDS)

Answer 14

Real-time monitoring of events as they happen in a computer system or network, using audit trail records and network traffic and analyzing events to detect potential intrusion attempts.

Question 15

Intrusion Prevention Systems (IPS)

Answer 15

Any hardware or software mechanism that has the ability to detect and stop attacks.

Question 16

Kerberos Process

Answer 16

An SSO open-standards protocol for authentication in a single security domain.

Question 17

Key Distribution Center (KDC)

Answer 17

Works as both an Authentication Server (AS) and a Ticket Granting Server (TGS).

Question 18

Least priviledge

Answer 18

The principle that people or processes should only be allowed access to the resources they absolutly need to accomplish their assigned work, and only for as long as necessary to complete that work.

Question 19

Mandatory Access Control (MAC)

Answer 19

Means of restricting access to objects based on the sensitivity (as represented by a label) of the information contained in the objects and the formal authorization (ie. clearance) of subjects to access information of such sensitivity.

Question 20

Need-to-know

Answer 20

This principle restricts users from accessing information or systems not required to perform their jobs.

Question 21

Network-Based IDS (NIDS)

Answer 21

Can detect potential attacks by analyzing captured network packets.

Question 22

Preventive controls

Answer 22

These controls block unwanted actions.

Question 23

Recovery controls

Answer 23

These controls restore lost computing resources or capabilities and help the organization to return to normal operations and recover monetary losses caused by a security violation or incident.

Question 24

Rule-Based Access Control

Answer 24

Access is based on a list of rules created or authorized by system owners that specify the priviledges granted to users.

Question 25

Security Domains

Answer 25

The set of objects that a subject in an information system is allowed to access.

Question 26

Seperation of duties

Answer 26

No one person should have control over the complete processing of a transaction or series of transactions where that control would allow the person to manipulate the transaction(s) for personal gain or make an avoidable mistake.

Question 27

Single Sign-On (SSO) Process

Answer 27

A centralized authentication database that administers access to multiple resources.

Question 28

Social engineering

Answer 28

Gaining critical or sensitive information through social interaction, typically with the organization’s employees, suppliers, and contractors.

Question 29

War dialing

Answer 29

The technique of sequentially calling a range of telephone numbers in an attempt to identify modems, remote access devices, and maintenance connections of computers on a network.

Question 30

Wireless penetration

Answer 30

The introduction of wireless networks and other wireless devices such as keyboards, mice, and VGA projectors, whether through formal approved network configuration management or the inadvertent actions of well-meaning users, have introduced additional security exposures.