Chapter 1 Flashcards
1
Q
Confidentiality
A
Prevent the disclosure of sensitive information from unauthorized access
2
Q
Integrity
A
Prevention of unauthorized modification
3
Q
Availability
A
Assurance that systems and data are accessible by authorized users when needed
4
Q
Vulnerability
A
A system, network or device weakness
5
Q
Threat
A
Potential danger posed by a vulnerability
6
Q
Threat agent
A
The entity that identifies a vulnerability and seeks to exploit it
7
Q
Risk
A
The likelihood of a threat agent taking advantage of a threat combined with the corresponding business impact
8
Q
Exposure
A
Potential to experience loss from a threat
9
Q
Countermeasure
A
Actions to mitigate potential threats and reduce risk
10
Q
Asset
A
The item(s) to be protected
11
Q
Dealing with risk
A
Accept = acknowledge but no mitigation Transfer = shift responsibility Mitigate = apply safeguard Avoid = eliminate exposure or the asset