Chapter 3 Module 1

Question 1

Security Control

Answer 1

A control is a safeguard or countermeasure designed to preserve Confidentiality, Integrity and Availability of data. ( CIA Triad)

Question 2

Access Control

Answer 2

Access Control involves limiting what objects can be available to what subjects according to what rules.

Question 3

Firewall

Answer 3

An example of Security Access Control, is included in a system or network to prevent something from
The outside from coming in and disturbing or compromising the environment.

Question 4

Subject

Answer 4

Can be defined as an entity that requests access to our assets.

Question 5

A subject

Answer 5

Is a user, a process, a procedure, a client ( or a server), a program, a device such as an endpoint, workstation, smartphone or removable storage device with onboard firmware.

Question 6

Object

Answer 6

Anything that a subject attempts to access.

Question 7

An object:

Answer 7

Is a building, a computer, a file, a database, a printer or scanner, a server , a communications resource, a block of memory, an input/output port, a person, a software task, thread or process.

Question 8

Access Rule

Answer 8

Is an instruction developed to allow or deny access to an object by comparing the validated identity of the subject to an access control list.

Question 9

Firewall

Answer 9

Devices that enforce administrative security policies by filtering incoming traffic based on a set of rules.

Question 10

Layered Defense

Answer 10

The use of multiple controls arranged in series to provide several consecutive controls to protect an asset;

Question 11

Defense in depth

Answer 11

Describes an information security strategy that integrates people, technology and operations capabilities to establish variable barriers across multiple layers and missions of the organization.

Question 12

The Principle of Least Privilege

Answer 12

The principle that users and programs should have only the minimum privileges necessary to complete their tasks.

Question 13

Privileged access management

Answer 13

Is based on the principle of least privilege, meaning each user is granted access only to the items they need and nothing further.

Question 14

Ransomware

Answer 14

A type of malicious software that locks the computer screen or files, thus preventing or limiting a user from accessing their system and data until money is paid.

Question 15

User provisioning

Answer 15

The process of creating, maintaining and deactivating user identities on a system.

Question 16

Encrypt

Answer 16

To protect private information by putting it into a form that can only be read by people who have permission to do so.

Question 17

Privileged accounts

Answer 17

An information system account with approved authorizations of a privileged user.