Asset Security Flashcards

1
Q

Sarbanes-Oxley Act (SOX)

A

Any public traded company on US Market - FINANCIAL SAFEGUARDS and ensures data integrity

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Computer Fraud and Abuse Act (CFAA)

A

US Anti-hacking statute, most widely used law pertaining to computer crime and hacking.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Federal Privacy Act of 1974

A

How we gather data on US citizens and how to safeguard data

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Personal Information Protection and Electronic Documents Act

A

Canadian law in the private sector to oversee collection, use, and disclosure of personal information in regular business activities. Applies if you plan on doing business with Canada.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

USA Patriot Act

A

Allows agencies to use a single warrant from one federal judge to collect info from sources across the US

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Gramm-Leach-Bliley Act of 1999 (GLBA)

A

Requirement for Financial Institutions to give their customers the right to keep financial companies from sharing info with nonaffiliated parties.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Federal Information Security Management Act (FISMA)

A

US Fed Govt Act, requires fed agencies to safeguard PII and information systems

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

United States Department of Commerce Safe Harbor Privacy Principles

A

FTC and DoT business with US and EU framework - safeguard/handling of customer data. ONLY applies to

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Asia Pacific Economic Cooperation (APEC) Privacy Framework

A

Focuses on results/harm that the disclosure of info could have on business, rather than individual rights.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What encryption method does IPsec use to ensure the confidentiality of data in transit?

A

Encapsulating Security Payload (ESP) - protocol that uses IPsec to encrypt data. Operates in Tunnel Mode, and Transport Mode.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Relationship between TLS and SSL?

A

TLS is a new and improved version of SSL. However, NONE of them should be used due to known vulnerabilities

How well did you know this?
1
Not at all
2
3
4
5
Perfectly