Ch1 Quiz Flashcards

1
Q

When a company chooses to ignore a risk and proceed with a risky activity, which treatment is being applied by default?

A. Mitigation
B. Avoidance
C. Acceptance
D. Transference

A

C. Acceptance

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

This can protect information in a file cabinet from being viewed by unauthorized persons (confidentiality) as well as keeping any documents from being modified (integrity).

A

Door Lock

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

This one is abstract but could be linked to availability, because the sooner it works, the more data remains available.

A

Fire Extinguisher

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

This can provide confidentiality by protecting data from unauthorized access and integrity from unauthorized changes. It could even be stretched to provide availability if shared emergency access to information is needed by more than one person.

A

Password Policy

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

This is usually associated with integrity, to protect files from tampering or to provide non-repudiation. It is also commonly used to protect data in transit from prying eyes, so it could be aiding confidentiality as well.  

A

Encryption

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

This protects availability by ensuring continued access to systems during a power outage.

A

Generator

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

This would most generally be associated with confidentiality and identity management, but could be argued for all three, the same as a password policy.

A

Biometrics

How well did you know this?
1
Not at all
2
3
4
5
Perfectly