An Introduction - Topic 1

Question 1

What is cybersecurity?

Answer 1

Cyberspace + security

From different perspectives different things.

Summary: “Protecting critical systems and sensitive information from digital attacks”

From our perspective: “Cybersecurity is the process and techniques involved in protecting sensitive data, computer systems, networks and software applications from cyber (network-based, digital) attacks)

Question 2

What is cyberspace?

Answer 2

Physical infrastructure, critical infrastructure, and cyber infrastructure (e.g. the internet)

Question 3

What is physical infrastructure?

Answer 3

Farms, food processing plants, delivery sites , fibre cables, gov facilities, hospitals, nuclear power plants, highways, railways, ports…

Question 4

What is Critical Infrastructure / Key resources (CIKR)

Answer 4

Government, health, emergency, gas and oil, electricity and energy, water, transportation, communication, banking, …

Question 5

What is cyber infrastructure?

Answer 5

Hardware, software, interconnected networks (i.e. the internet)

Question 6

What are the cybersecurity domains?

Answer 6

Critical infrastructure security - protecting devices, computer systems, networks and other assets that society relies upon

Network/internet security - protecting a computer network from intruders

Application security - protecting applications operating on-premises and in the cloud, handling data, user authentication, authorisation, etc.. securely

Cloud security - protecting data at rest, in transit and in use to support customer privacy, business requirements and regulatory compliance standards.

Information security - securing sensitive data from unauthorised access, exposure or theft

End-user education - building security awareness across the organisation to strengthen endpoint security

Disaster recovery / business continuity planning - tools and procedures for responding to unplanned events, such as natural disasters, power outages or cybersecurity incidents, with minimal disruption to key operations.

Question 7

What was the name of the program that bought down a large fraction of the internet in 1988?

Answer 7

Morris Worm

Question 8

What is the relationship between attack sophistication vs Skill level needed by attackers?

Answer 8

As attack sophistication goes up, skill level needed by attackers is going down.

Question 9

Is there definitely a one-for-all solution for all heterogeneous devices?

Answer 9

No

Question 10

What problems are caused by the anonymous nature of many internet based services?

Answer 10

Hard to trace the origin of an attack or the attackers.

legitimate services and software may be exploited by attackers.

Question 11

Why is there a need for international collaboration to address attacks?

Answer 11

Global networks exist without national boundaries, so attacks are mounted anywhere on the internet.

Question 12

What are Policy / Requirement specification bugs?

Answer 12

Inappropriate security policy of goals:
- Threat analysis
- Access control, least privilege

Question 13

What are design bugs in cybersecurity?

Answer 13

• Inappropriate use of cryptographic methods/tools
• Poor source of randomness
• Insecurity Protocols

Question 14

What are implementation bugs in cybersecurity?

Answer 14

Buffer Overflows

Question 15

What are some problems with management procedures?

Answer 15

Is the implemented system usable? Does it achieve the security goal? Have the risks been mitigated?

End-users, employees, administrators. Do they perform their tasks/roles as expected?