Chapter 1

Question 1

Threat Mode

Answer 1

Structured way of identifying potential threats, vulnerabilities and risks to a system

Question 2

NIST Definition of computer security

Answer 2

Measures/Control to ensure:

• Confidentiality
• Integrity
• Availability

of system assets

Question 3

The CIA triad

Answer 3

Core principles of computer security:

• Confidentiality
• Integrity
• Availability

Question 4

Confidentiality

Answer 4

Sensitive/private data not accessible to unauthorized individuals

Question 5

Integrity

Answer 5

Guards against unauthorized modification and destruction of data

Question 6

Availability

Answer 6

Service is not denied to authorized users

Question 7

Two concepts some argue should be added to CIA triad

Answer 7

Authenticity and Accountability

Question 8

Authenticity

Answer 8

Verifies genuinity and trustworthiness of data

Question 9

Accountability

Answer 9

Trace actions back to responsible entities

Question 10

Confidentiality example

Answer 10

• Student grades (high)
• Student entollment info (moderate)
• Staff directory (low - public)

Question 11

Integrity example

Answer 11

• Patient allergy database (high)
• Website hosting forums (moderate)
• Anonymous polls (low, known for inaccuracy)

Question 12

Availability example

Answer 12

• authentication services for finance (high) or Airport surveillance system
• Public Uni website (moderate)
• Non-critical applications like phone directories (low, alternatives are available for accessing the information)

Question 13

Vulnerability

Answer 13

Weakness in system

Question 14

Threat

Answer 14

Potential danger that may exploit vulnerability (cause harm to system)

Phishing emails, malware, hacker exploiting software bug

Question 15

Attack

Answer 15

Deliberate action taken to exploit vulnerability

Ransomware, SQL injection, DoS

Question 16

What is the first challenge of computer security?

Answer 16

Complexity: Security requirements may seem straightforward, but fulfilling may not be

Question 17

Why is it difficult to anticipate attacks in computer security?

Answer 17

Must consider potential threats from different perspectives to identify unexpected weaknesses (Anticipate what hasn’t been done)

Question 18

Counterintuitive Procedures

Answer 18

address non-obvious threats by adding “annoying” complexity (MFA) - threats not immediately obvious from requirements

Question 19

Challenge of Deployment decision

Answer 19

Deciding where and how to implement security mechanisms (Physically - where and Logically - which layer)

Question 20

Additional considerations in security challenges

Answer 20

Security measures often rely on secret information distribution or complex algorithms

Question 21

Battle of Wits

Answer 21

Attackers only have to exploit one vulnerabiltiy, defenders must close all

Question 22

Perception of benefits challenge in security

Answer 22

Users dont see value of security investments (until a breach occurs)

Question 23

Monitoring challenge

Answer 23

Security requires ongoing monitoring - difficult in today’s fast-paced environments

Question 24

Why is integration into Design important?

Answer 24

Security is often treated as an afterthought, instead of being integrated into design process from beginning

Question 25

Challenge of balancing security and usability

Answer 25

adding security measures often reduces usability

Question 26

Why is software critical to system’s security?

Answer 26

Large attack surface, often accessible remotely, containing vulnerabilities

Question 27

Examples of software

Answer 27

Applications, operating systems, system utilities

Question 28

Communication facilities and network examples

Answer 28

LANs and WANs communication links, bridges, routers

Question 29

Categories of vulnerabilities

Answer 29

Leakage - info accessed by unauthorized parties
Corruption - System corrupted to operate wrongly
Unavailability - Using system becomes impractical or impossible

Hint (CIA)

Question 30

Threats

Answer 30

capable of exploiting vulnerabilities, if carried out, its called an attack

Question 31

Entity performing attack

Answer 31

Attacker or threat agent

Question 32

Two types of attacks

Answer 32

Active: attempt to later system resources
Passive: Gain info from system

Question 33

Inside attack

Answer 33

Authorized users use resources in unapproved way

Question 34

Outside attack

Answer 34

from a system outsider

Question 35

Countermeasure

Answer 35

Any measure taken to deal with a security attack (Prevent, detect, recover)

Question 36

Why should you be really careful with countermeasures?

Answer 36

They can introduce new vulnerabilities or past may remain

Question 37

Unauthorized disclosure (threat consequence)

Answer 37

threats to confidentiality

Question 38

4 threat actions that cause unauthorized disclosure

Answer 38

• Exposure (release of sensitive info)
• Interception (access data while traveling from source to destination)
• Inference (derive info from patterns in traffic analysis, repeated queries, etc)
• Intrusion (overcoming access controls to get data)

Question 39

Deception (threat consequence)

Answer 39

Threat to system or data integrity

Question 40

3 threat actions that cause deception

Answer 40

• Masquerade
• Falsification
• Repudiation (denying responsibility of attack)

Question 41

Disruption (threat consequence)

Answer 41

Threat to system availability or integrity

Question 42

3 threat actions that cause disruption

Answer 42

Incapacitation - disable a system component
Corruption - modify system functions or data
Obstuction - hinder delivery of system services

Question 43

Usurpation (threat consequence)

Answer 43

threat to system integrity

Question 44

2 threat actions that cause usurpation

Answer 44

Misappropriation - unauthorized party takes control of system resource
Misuse - force system to perform action detrminental to security

Question 45

Most vulnerable asset in system

Answer 45

Hardware

Question 46

Fundamental Security Design Principles (every foolish cat often sleeps lazily purring in every major layer lovingly)

Answer 46

Economy of Mechanism:

Keep security measures simple to reduce vulnerabilities and ease testing.
Fail-safe Defaults:

Deny access by default and grant it only when explicitly permitted.
Complete Mediation:

Check access permissions every time, avoiding reliance on cached decisions.
Open Design:

Security mechanisms should be transparent and open to scrutiny.
Separation of Privilege:

Require multiple privilege attributes for access (e.g., multifactor authentication).
Least Privilege:

Give users only the access needed to complete their tasks.
Least Common Mechanism:

Minimize shared resources to reduce unintended consequences.
Psychological Acceptability:

Make security measures user-friendly and non-intrusive.
Isolation:

Separate critical resources from public or less secure systems.
Encapsulation:

Restrict access by wrapping resources in secure boundaries.
Modularity:

Design security features in independent modules for easier updates.
Layering:

Use multiple defense methods so the failure of one doesn’t compromise the system.
Least Astonishment:

Make system behavior predictable and intuitive for users.

Question 47

Attack surface

Answer 47

Vulnerabilities that are reachable and exploitable

Question 48

Network attack surfaces example

Answer 48

Attack: DoS
Vulnerability: Listening on network, services not prtected by a firewall

Question 49

Software attack surfaces example

Answer 49

Web server code with thousands of lines of code (huge attack surface)

Question 50

Human attack surfaces example

Answer 50

social engineering

Question 51

Attack tree

Answer 51

hierarchical structure used to represent potential methods for exploiting vulnerabilities

Question 52

security policy

Answer 52

statement of rules on how a system provides security services

Question 53

4 complementary actions in Security Implementation

Answer 53

Prevention (try)
Detection
Response
Recovery

Question 54

Assurance and Evaluation

Answer 54

Ensure confidence that security system operates as intended (degree, because absolute is not possible)

Evaluation involves examining security systems against specific criteria