CISSP DOMAIN 1 Flashcards

Question 1

Q

Security and Risk Management

Answer

A

Security terminology and Principles, Protection Control Types, Frameworks, Models, Standards, and best practices, Laws and Crimes, Intellectual Property, Data Breaches, Risk Management, Threat Modeling, Business Continuity, Disaster Recovery, Personnel Security, Security Governance

Question 2

Q

Two Key Concepts

Answer

A

Security and Risk

Question 3

Q

AIC Triad

Answer

A

Availability

Integrity

Confidentiality

Question 4

Q

Security Objectives

Answer

A

Availability

Confidentiality

Integrity

Question 5

Q

Protect Integrity

Answer

A

Access Controls

Intrusion Detection

Hashing

Question 6

Q

Availability

Answer

A

Reliability and timely access

Question 7

Q

Integrity

Answer

A

Assurance of the accuracy and reliability of information systems

Question 8

Q

Confidentiality

Answer

A

Necessary level of secrecy

Question 9

Q

Threats to Confidentiality

Answer

A

Network monitoring

Shoulder surfing

stealing password files

breaking encryption schemes

social engineering

Question 10

Q

How to maintain Confidentiality

Answer

A

Encryption

strict access control

data classification

training personnel

Question 11

Q

Availability Controls

Answer

A

RAID 
Clustering
Load Balancing 
Redundant power and data line 
Colocation and offsite
rollback 
Fail over

Question 12

Q

Integrity Controls

Answer

A

Hashing

Configuration Management

Change Control, Access Control

Software Digital Signing

Transmission cyclic redundancy check (CRC)

Question 13

Q

Confidentiality Controls

Answer

A

Encryption for data at rest

Whole Disk Encryption

Encryption for data in transit, (IPSEC, TLS, PPTP, SSH,)

Access Control

Question 14

Q

Encryption for data in transit

Answer

A

IPec

TLS

SSH,

Question 15

Q

Types of Access Control

Answer

A

Physical and Technical

Question 16

Q

Transmission CRC

Answer

A

Cyclic Redundancy Check

Question 17

Q

Vulnerability

Answer

A

Weakness in a system that allows a threat to compromise security

Question 18

Q

Threat

Answer

A

Potential Danger that can exploit a vulnerability

Question 19

Q

Threat agent

Answer

A

Person, Process, or employee

Question 20

Q

Risk definition

Answer

A

Likelihood of a threat source exploiting a vulnerability

Question 21

Q

Risk function

Answer

A

Ties vulnerability, threat, and likelihood of exploitation

Question 22

Q

Exposure

Answer

A

instance of being exposed to losses

Question 23

Q

Control or Countermeasure

Answer

A

Mitigates potential risk

Question 24

Q

Control functions

Answer

A

Reduce risk an organization faces

Question 25

Q

Control types

Answer

A

Administrative

Technical

Physical

Question 26

Q

Administrative Control Types

Answer

A

Security documentation

risk management

personnel security

training

Question 27

Q

Technical Controls

Answer

A

(also called logical controls) 
software or hardware components  
Firewalls
IDS
encryption 
identification
authentication mechanisms

Question 28

Q

Physical controls

Answer

A

Security guards

locks

fencing

lighting

Question 29

Q

Controls must

Answer

A

Must map to threats

Question 30

Q

Functionalities of Controls

Answer

A

Preventive 
detective
corrective 
deterrent 
recovery 
compensating

Question 31

Q

Preventive control

Answer

A

Intended to avoid and incident from occurring

Question 32

Q

Detective Control

Answer

A

Helps identify an incident’s activity and potentially an intruder

Question 33

Q

Corrective

Answer

A

Fixes components or systems after an incident

Question 34

Q

Deterrent

Answer

A

Intended to discourage a potential attacker

Question 35

Q

Recovery

Answer

A

Intended to bring the environment back to regular operations

Question 36

Q

Compensating controls

Answer

A

Provide alternative measure of control

Question 37

Q

Preventive Administrative controls

Answer

A

Policies and procedures 
Effective hiring practices 
Pre employment background checks 
Controlled termination processes 
data classification and labeling 
Security awareness

Question 38

Q

Preventive: Physical controls

Answer

A

Badges
swipe cards 
Guards 
dogs 
fences 
locks
man traps

Question 39

Q

Preventive: Technical

Answer

A

Passwords
biometrics 
smart cards 
encryption
protocols, call-back systems, database views constrained user interfaces 
Antimalware software 
access control lists 
firewalls,
intrusion prevention system,

Question 40

Q

A security program is

Answer

A

A framework made up of many entities;

logical, administrative, and physical

Question 41

Q

ISO/IEC 27000 series

Answer

A

International standards on how to develop and maintain an ISMS. British standard 7799 (BS7799)

Question 42

Q

7799

Answer

A

British standard for ISMS, 27000 series is based on this

Question 43

Q

BS 7799

Answer

A

developing standard to provide guidance on how to design, implement policies,processes and technologies to manage risks

Question 44

Q

BS7799 Part 1

Answer

A

Outlined control objectives and a range of controls to meet those objectives

Question 45

Q

BS 7799 Part 2

Answer

A

Baselines for organizations could be certified against

Question 46

Q

ISO/IEC 27000

Answer

A

Overview and vocabulary

Question 47

Q

ISO/IEC 27001

Answer

A

ISMS requirements

Question 48

Q

ISO/IEC 27002

Answer

A

Code of practice for information security management

Question 49

Q

ISO/IEC 27003

Answer

A

ISMS implementation

Question 50

Q

ISO/IEC 27004

Answer

A

ISMS measurement

Question 51

Q

ISO/IEC 27005

Answer

A

Risk management

Question 52

Q

ISO/IEC 27006

Answer

A

Certification body requirements

Question 53

Q

ISO/IEC 27007

Answer

A

ISMS auditing

Question 54

Q

ISO/IEC 27008

Answer

A

Guidance for auditors

Question 55

Q

ISO/IEC 27011

Answer

A

Telecommunication organizations

Question 56

Q

ISO/IEC 27014

Answer

A

Information Security governance

Question 57

Q

ISO/IEC 27015

Answer

A

Financial Sector

Question 58

Q

ISO/IEC 27031

Answer

A

Business Continuity

Question 59

Q

ISO/IEC 27032

Answer

A

Cybersecurity

Question 60

Q

ISO/IEC 27033

Answer

A

Network Security

Question 61

Q

ISO/IEC 27034

Answer

A

Application Security

Question 62

Q

ISO/IEC 27035

Answer

A

Incident Management

Question 63

Q

ISO/IEC 27037

Answer

A

Digital collection and preservation

Question 64

Q

ISO/IEC 27799

Answer

A

Health organizations

Answer 65

A

Guideline on how to build an architecture

Answer 66

A

stakeholders first, Views next,

Answer 67

A

Confusion

Answer 68

A

a framework

Answer 69

A

Requires IT organizations to improve their IT expenditures

Answer 70

A

Two dimensional model 6 elements;

What, How, Where, Who, When, Why

Answer 71

A

look at the same organization from different viewpoints

Answer 72

A

Understand the enterprise from 4 different views
Business
Data
Application
Technology
Is iterative and cyclic

Answer 73

A

Focuses on Command, Control, Communications, computers, intelligence, surveillance, reconnaissance, and processes

Answer 74

A

To get data in the right format to the right people as soon as possible

Answer 75

A

Layered Framework
What are you trying to do? 
Why are you doing it? 
How are you trying to do it?  
Who is involved? 
Where are you doing it?  
When are you doing it? 
Strategic alignment

Answer 76

A

The core business processes are integrated into the security operating model

Answer 77

A

deals with metrics 
meeting Service level agreements 
achieving ROI 
meeting set baselines 
providing management with a dashboard 
or balanced scorecard

Answer 78

A

Enterprise is the structure of the organization.

System is the structure of the software and computing components

Answer 79

A

Meeting Stakeholder needs
Covering the enterprise end to end
3, Applying a single integrated framework
Enabling a wholistic approach
Separating governance from management

Answer 80

A

stakeholders through a series of goals.
At any point, we should be able to ask,
“why are we doing this?”

Answer 81

A

Security and privacy controls for Federal information systems

Answer 82

A

management

operational

technical

Answer 83

A

Model for corporate governance

Answer 84

A

Sends executives to jail for reporting fraudulent accounting.

Answer 85

A

De facto standard for best practices

Answer 86

A

Process improvement

Answer 87

A

Level 0 = Nonexistant
Level 1 = Unpredictable Processes
Level 2 = Repeatable processes
Level 3 = Defined Processes
Level 4 = Managed processes
Level 5 = Optimized processes

Answer 88

A

Plan and Organize
Implement
Operate and maintain
Monitor and evaluate

Answer 89

A

Compromised system,

Software installed

Multiple systems

Answer 90

A

carry out DDOS attacks,

transfer spam

Answer 91

A

Focused and motivated to penetrate a network

Custom developed for a target.

Answer 92

A

Phishing and zero day attack

Back door

Lateral movement

Data gathering

ex-filtrate

Answer 93

A

Protection of privacy and trans-border flows of personal data.

Answer 94

A

Collection Limitation Principle
Data Quality Principle
Purpose Specification Principle
User limitation principle
Openness Principle
Individualization Principle
Accountability Principle

Answer 95

A

Personal data should be limited, obtained lawfully and fair, with the knowledge of the subject

Answer 96

A

Personal data should be kept complete and current

Answer 97

A

Subjects should be notified of the reason for collection

Answer 98

A

Disclosure only by consent of the subject

Answer 99

A

Reasonable protection of data

Answer 100

A

Subjects should be able to easily establish existence and nature of the personal data

Answer 101

A

Organizations accountable for complying with other principles

Answer 102

A

Addresses using and transmitting private information

Answer 103

A

All states in Europe must abide by prionciples to be in compliance

Answer 104

A

Outlines how US based companies can comply with EU principles

Answer 105

A

Export comtrols for conventional arms and dual use goods and technologies

Answer 106

A

Used in continental Europe
Different from England's Common law
Rule based not precedent based
Not civil (tort)
Most widespread system in the world

Answer 107

A

Developed in England
Based on previous judgments
Reflects community’s morals and expectations
Led to creation of lawyers

Answer 108

A

Based on common law or statutory law
Addresses behavior considered harmful to society
Punishment is loss of freedom or incarceration
Prosecution beyond a reasonable doubt

Answer 109

A

offshoot of criminal law

defendant owes a legal duty to victim

Answer 110

A

Intentional
Wrongs against property
Wrongs against a person
Negligence
Nuisance
Dignitary wrongs
Economic wrongs
Strict labiliy

Answer 111

A

Created by administrative agencies.

Answer 112

A

Deals with personal conduct and patterns of behavior

Based on rules of the region

Answer 113

A

Covers all aspects of life

Answer 114

A

Two or more legal sysstems

Answer 115

A

Violation of a resource that provides value

Something that is proprietary and important to survival and profitability

Answer 116

A

Protects the right of a creator of original works to control publication and distribution
Covers categories of work
Includes Computer programs and manuals
People are covered for their lifetime plus 70 years

Answer 117

A

Used to protect a word, name, symbol sound, shape or color

Answer 118

A

Given to grant legal ownership to an individual or company to exclude others from using or copying
Good for 20 years from date of approval
Patent is the strongest form of intellectual property protection

Answer 119

A

when intellectual or creative work of an author is used without permission

Answer 120

A

Publicly available software available free of charge.

Can be copied, studied,modified

Answer 121

A

User can try out software then buy it

Answer 122

A

Sold commercially

Answer 123

A

provided at reduced cost

Answer 124

A

data that can uniquely identify contact, or locate a single person

Answer 125

A

Framework and guidelines to ensure security, integrity, , and privacy

Answer 126

A

Expands HIPPA

Answer 127

A

Reduces restrictions on law enforcement agencies

Answer 128

A

Financial Privacy Rule
Safeguards Rule
Pretexting Protection

Answer 129

A

Canadian law protects personal information

Answer 130

A

Credit card industry program
12 requirements
Use firewalls, Do not use vendor defaults, Protect stored cardholder data, Encrypt,

Answer 131

A

Employee must be aware of monitoring, Monitoring must be work related, Must be explained to employee by policy and constantly reminded, Signed Acceptable Use Policy.

Answer 132

A

Employees must be informed of monitoring or privacy rights will be violated

Answer 133

A

The opposite of privacy

Answer 134

A

Overall general statement by senior management.

Must be technology independent

Answer 135

A

Detailed and specific industry regulations

Answer 136

A

Mandatory activities actions or rules

Answer 137

A

Comparison for future changes

Answer 138

A

Recommended actions and operational guides

Answer 139

A

Process of identifying and assessing risk, reducing it to an acceptable level, and ensuring it remains at that level

Answer 140

A

Physical, Human interaction, Equipment malfunction, Inside/outside attacks, misuse of data, Loss of data, application error

Answer 141

A

Organizational, Business Process, Information Systems,

Answer 142

A

Frame Risk
Assess Risk
Respond to Risk
Monitor Risk

Answer 143

A

Process of describing feasible adverse effects on our assets caused by threat sources
Interested in vulnerabilities in our systems that could lead to compromise
Who would want to exploit this vulnerability and why
Determine whether a given threat source has the means to attack

Answer 144

A

Process of getting a person to violate a security procedure or policy

Answer 145

A

Vulnerability-threat-attack triad

Answer 146

A

method of identifying vulnerabilities and threats

Answer 147

A

Used to ensure that security is cost effective, relevant, timely, and responsive to threats

Answer 148

A

Identify assets
Identify vulnerabilities and threats
Quantify the probability and business impact of the threat and cost of the countermeasure

Answer 149

A

a cost/benefit comparison

Answer 150

A

Senior Management

Answer 151

A

Errors passed on to other processes

Answer 152

A

What would be lost if a threat agent exploited a vulnerability

Answer 153

A

Secondary in nature like reputation, market share, late penalties, civil suits, delayed collection of funds

Answer 154

A

Guide for conducting Risk Assessments

Answer 155

A

Prepare for the assessment
Conduct the assessment
Communicate results
Maintain assessment

Answer 156

A

Facilitated risk analysis process.
Qualitative methodology
only focused on systems that really need assessing
Used to analyze one system, application, or business process at a time

Answer 157

A

Created by Canegie Mellon
Places people who work in the areas in decision making positions
Used to assess all systems

Answer 158

A

Focused on the health of a company

Answer 159

A

International Standard for risk management ISMS

Answer 160

A

Determines functions, identifies functional failures, and assesses the causes of failure
Frequently used in product development and operational environments
Identifies single point of failure

Answer 161

A

Start with a block diagram
Consider what happens if each block fails
Draw a table with failures paired with effect
Correct the design of the system
Have several engineers review

Answer 162

A

Works in stages
Define objectives
Assess Risks
identify countermeasures

Answer 163

A

Qualitative and Quantitative

Answer 164

A

Assign monetary and numeric values to all elements

Answer 165

A

Assigns subjective ratings to risk as in Red, Yellow, and Green

Answer 166

A

Dollar amount assigned to a single event

Answer 167

A

percentage of loss a realized threat could have on an asset

Answer 168

A

Annualized Loss Expectancy ALE

Answer 169

A

Walk through different scenarios of risk possibilitoes and rank the seriousness of the threats

Answer 170

A

judgement, best practices, intuition, and experience

Answer 171

A

Delphi, Brainstorming, story-boarding, focus groups, surveys, questionnaires, checklists, one-on-one meetings, and interviews

Answer 172

A

(ALE before implementing a safeguard) - (ALE after a safeguard) - (Annual cost of a safeguard)

Answer 173

A

threats x vulnerability x asset value = total risk (threats x vulnerability x asset value) x controls gap = residual risk
or
Total Risk - countermeasure = residual risk

Answer 174

A

Transfer
avoid
reduce
accept

Answer 175

A

insurance

Answer 176

A

Discontinue risk behavior

Answer 177

A

Acknowledge the risk and decides to live with it without countermeasures

Answer 178

A

an internal controls audit carried out by a third party auditing organization

Answer 179

A

US government system life-cycle approach to Risk management

Answer 180

A

Risk management framework

Answer 181

A

Working group of academic and corporate risk professionals

Answer 182

A

Generic. Not IT centric

Answer 183

A

Categorize information system
Select Security controls
3 Implement security controls
4 Assess security controls
5 Authorize information system
6 Monitor security controls

Answer 184

A

Minimize the effects of a disaster or disruption

Answer 185

A

provides methods and procedures for dealing with long term outages and disasters

Answer 186

A

Develop the continuity planning policy statement
Conduct the business impact analysis
3, Identify preventive controls
Create contingency strategies
5 Develop an information system contingency plan
6 Ensure plan testing, training and exercises
7 Develop plan maintenance

Answer 187

A

Strengths

Weaknesses

Opportunities

Threats

Answer 188

A

Doing everything in one’s power to prevent a bad thing from happening by setting appropriate policies researching the threats and incorporating them into a risk management plan

Answer 189

A

Taking precautions that a reasonable and competent person would take.

Prudent man rule

Answer 190

A

Functional analysis.

Answer 191

A

Threat x Impact x Probability + time`

Answer 192

A

Man made, natural, or technical

Answer 193

A

Select individuals to interview for data gathering
Create Data gathering techniques (surveys, questionnaires, qualitative and quantitative approaches
Identify company’s critical functions
Identify the resources these functions depend upon
Calculate how long these functions can survive without these resources
Identify vulnerabilities and threats to functions
Calculate the risk for each different business function
Document findings and report to management

Answer 194

A

Outage time that can be endured

Answer 195

A

Critical = minutes to hours
Urgent = 24 hours
Important = 72 hours
Normal = 7 days
Nonessential = 30 days

Answer 196

A

One individual cannot complete a critical task alone.

Is a preventive administrative control to reduce fraud

Answer 197

A

at least 2 people are working together to cause description or fraud

Answer 198

A

Split knowledge and dual control

Answer 199

A

No one has all the details

Answer 200

A

Two people work together

Answer 201

A

administrative detective control

Put in place to uncover fraud

Answer 202

A

Someone else discovers fraudulent errors or activities

Answer 203

A

Protect the company and information

Answer 204

A

Used to assess the effectiveness of an ISMS and controls

Answer 205

A

Protect society, the common good, necessary public trust and confidence, and the infrastructure

Act honorably, honestly, justly, responsibly and legallly

Provide diligent and competent service to principals

Advance and protect the profession

Answer 206

A

Depends on availability and accessibility

Answer 207

A

Purposely seeking unauthorized access to internet resources
Disrupting the intended use of the internet
Wasting resources (people, capacity, and computers)
Destroying the integrity of computer based information
Compromising the privacy of others
Conducting internet wide experiments in a negligent manner

Answer 208

A

Includes people, partners, equipment, facilities,reputation, and information

Answer 209

A

Acquisition
Use
Archival
Disposal

Answer 210

A

Copy of data currently in use

Answer 211

A

Copy of data no longer in use, but kept

Usually removed from its original location

Answer 212

A

To gauge the amount of funds and resources that should go to protecting the data

Answer 213

A

Indicate the level of Confidentiality, Integrity, Availability

Answer 214

A

Public

Sensitive

Private

Confidential

Answer 215

A

Confidential

Unclassified

Sensitive but unclassified

Secret

Top Secret

Answer 216

A

Disclosure not welcome.

No adverse impact if disclosed

Answer 217

A

Requires special precautions.

Higher than normal protection

Answer 218

A

Personal information for company use

Answer 219

A

Confidential
Unclassified
Sensitive but unclassified
Secret
Top Secret

Answer 220

A

Senior Management

Answer 221

A

Chief Privacy Officer

Answer 222

A

Chief security officer

Answer 223

A

Data Owner

Answer 224

A

Data Custodian

Answer 225

A

System owner

Answer 226

A

Security Administrator

Answer 227

A

Supervisor

Answer 228

A

Change control Analyst

Answer 229

A

Data Analyst

Answer 230

A

What data do we keep

How long do we keep it

Where do we keep the data

Answer 231

A

Scheme for classifying data

Answer 232

A

Sensitivity will determine controls

Answer 233

A

Tagging schema to keep data searchable

Answer 234

A

Makes data searchable

Answer 235

A

Identification of data = data required by the order
Preservation
Collection
Processing
5 Review
Analysis
Production
Presentation

Answer 236

A

Must understand acceptable use.

Key issues are training and auditing

Answer 237

A

Overwriting
Dequassing
Encryption
Physical Destruction

Answer 238

A

Guidelines for media sanitation

Answer 239

A

Resides in external or auxillary devices like

hard drives

SSDs

optical disks

tape

Answer 240

A

moving between computer nodes should be encrypted by TLS 1,1 and later, or IPSEC.

Weaknesses are in backward compatibility,

Answer 241

A

digital certificates to certify one or both endpoints.

Server uses a certificate. but the client doesn’t

Answer 242

A

attacker intercepts one way authentication between server and client

Answer 243

A

used to provide secure connections between remote users and corporate resources by trusted channels

Answer 244

A

data residing in primary storage devices such as volatile memory. Data in memory is not encrypted

Answer 245

A

information leaked by a cryptosystem.

Answer 246

A

Connects 2 channels. A plaintext channel and an encrypted channel

Answer 247

A

by product of a plaintext channel connecting with an encrypted channel

Answer 248

A

2014 demonstrated unchecked boundaries could expose information from one process to other processes running on the same system

Answer 249

A

sanitized

Answer 250

A

media will be used in the same environment for the same purposes

Answer 251

A

Optical media, and overwriting may not be effective when dealing with solid state drives

Answer 252

A

Recovery must cost more than the value of the data

Answer 253

A

Tracking
Effectively implementing access controls
Tracking the number and location of backup versions
Documenting the history of changes to media
Ensuring environmental conditions do not endanger media
Ensuring media integrity
Inventory the media on a scheduled basis
Carrying out secure disposal activities
Internal and external labeling

Answer 254

A

Date created
Retention period
Classification level
Who created it
Date to be destroyed
Name and version

Answer 255

A

Negligence. Lack of awareness and discipline among employees

Answer 256

A

do not know where data is

Answer 257

A

Confidentiality has been comprised

Answer 258

A

When data moves from one stage to another

Answer 259

A

threat actors and tasks they want to perform on a system

Answer 260

A

used by system analysts to document tasks that authorized actors perform on a system

Answer 261

A

ability to deal with challenges

Answer 262

A

applies to protection policies to data in motion

Answer 263

A

will not protect data on devices not on the network.

Answer 264

A

Applies policies to data at rest and data in use

Answer 265

A

complexity

Answer 266

A

deploy both NDLP and EDLP

Answer 267

A

The active element in a security relationship such as users, programs and computer

Answer 268

A

an object

Answer 269

A

Management of the relationship between subjects and objects

Answer 270

A

Capturing network traffic
stealing password files
social engineering
port scanning
shoulder surfing
eavesdropping
sniffing
escalation of privileges

Answer 271

A

oversite
ineptitude
failing to properly encrypt
failing to fully authenticate a remote system
accessing malicious sites
misrouted faxes
documents left on printers

Answer 272

A

encryption
network traffic padding
strict access control
rigorous authentication procedures
data classification
extensive personnel training

Answer 273

A

Sensitivity
Discretion
Criticality
Concealment
Secrecy
Privacy
Seclusion
Isolation
Integrity

Answer 274

A

Integrity

Answer 275

A

protecting the reliability and correctness of data

Answer 276

A

prevents unauthorized alteration of data

Answer 277

A

viruses
logic bombs
unauthorized access
errors in coding and applications
malicious modification
intentional replacement
system back doors

Answer 278

A

strict access control
rigorous authentication procedures
intrusion detection systems
object/data encryption
hash total verifications
interface restrictions
input function checks
extensive personnel training

Answer 279

A

subject who caused an event cannot deny the event occurred

Answer 280

A

Digital certificates
session identifiers
transaction logs
transactional and access control mechanisms

Answer 281

A

device failure
software errors
environmental issues
DOS attacks
object destruction
communication disruptions

Answer 282

A

Designing systems properly
Effective access control
Monitoring performance and network traffic
Using firewalls and routers to prevent DOS attacks
Redundancy for critical systems
Maintaining and testing backup systems
Eliminate single points of failure

Answer 283

A

Both Confidentiality and Integrity

Answer 284

A

Usability
Accessibility
Timeliness

Answer 285

A

Authentication
Authorization
Accountability or Auditing

Answer 286

A

Claiming to be an identity when accessing a secured area or system

Answer 287

A

Proving you are an identity

Answer 288

A

Defining permissions

Answer 289

A

Recording a log of events to check for compliance

Answer 290

A

Something you know

Something you have

Something you are

Answer 291

A

Compares the subject, the object,

and the intended activity

Answer 292

A

Discretionary Access Control

Mandatory Access Control

Role Based Access Control

Answer 293

A

Programmatic means by which a subject’s actions are tracked and recorded to hold a subject accountable

Answer 294

A

Security policy can be enforced only if accountability is maintained.

Relies on the capability to prove a subject’s identity and track their activities

Answer 295

A

Defense in depth.

Multiple controls in a series

Answer 296

A

Used for efficiency

Similar elements are put in groups, classes, or roles that are assigned security controls, restrictions or permissions as a collective.

Answer 297

A

by enabling you to assign security controls to a group of objects collected by type or function

Answer 298

A

Preventing data from being discovered or accessed by a subject by positioning data in a logical storage compartment that is not seen by the subect

Answer 299

A

Collection of practices related to supporting, defining, and directing security efforts demonstrate a business

Answer 300

A

Demonstrate a business specific need to alter an existing process or business task

Answer 301

A

Senior Management

Answer 302

A

Strategic

Tactical

Operational

Answer 303

A

Long term plan that is stable.

Defines the organization’s purpose

Helps to understand security functions and align with the organization’s objectives

Useful for about 5 years

Answer 304

A

Mid Term plan

More details on the Strategic Plan

Useful for about a year

Prescribes and schedules tasks necessary to accomplish goals

Answer 305

A

Short term, highly detailed plan based on strategic and tactical plans

Updated often monthly or quarterly

Answer 306

A

Inappropriate information disclosure

data loss

downtime

failure to achieve sufficient return on investment

Answer 307

A

Assets need to be sanitized to prevent data leakage
Storage media removed and destroyed
Employees released should be debriefed

Answer 308

A

planning
testing
logging
auditing
monitoring

Answer 309

A

ensure any change does not lead to reduced or compromised security

Answer 310

A

Making it possible to roll back

Answer 311

A

Implement changes in a monitored and orderly manner
Formalized testing
Changed can be reversed
Users are informed
Effects of change are systematically analyzed
Negative impact minimized
Changes reviewed

Answer 312

A

Determines how much effort, money, and resources are allocated to protect the data and control access to it

Answer 313

A

Required once an asset no longer warrants or needs the protection necessary

Answer 314

A

Top Secret
Secret
Confidential
Sensitive but unclassified
Unclassified

Answer 315

A

unauthorized disclosure of top secret data will have drastic effects and cause grave damage to national security. Top secret data is compartmentalized on a need to know basis

Answer 316

A

Data of a restrictive nature. Unauthorized disclosure will have significant effects and cause critical damage to national security

Answer 317

A

Used for data of a sensitive, proprietary, or highly valuable nature
Disclosure would have noticeable effects and cause serious damage to national security

Answer 318

A

For internal use only. Used to protect information that could violate the privacy of individuals

Answer 319

A

Neither sensitive nor classified

Answer 320

A

Used without specifying Sensitive, Confidential, Secret, or top secret.

Answer 321

A

Confidential
Private
Sensitive
Public

Answer 322

A

Highest level of classification

May be called Proprietary

Answer 323

A

Commercial data private or personal nature

Answer 324

A

A negative impact could occur if disclosed

Answer 325

A

All data that does not fit other classifications

Answer 326

A

Formal assignment of responsibility to an individual or group

Answer 327

A

Not decision makers

Answer 328

A

Responsible for classifying information for placement and protection within the security solution
Delegates to custodian

Answer 329

A

Tasked with implementing protection defined by security policy and senior management

Answer 330

A

Provides many different types of inputs to software to stress its limits

Answer 331

A

Spoofing
Tampering
Repudiation
Information Disclosure
Denial of Service
Elevation of privilege

Answer 332

A

Process for Attack Simulation and Threat Analysis

Answer 333

A

Stage 1 Definition of Objectives (DO) for the analysis of risk
Stage 2 Definition of technical scope (DTS)
Stage 3 Application Decomposition and Analysis (ADA)
Stage 4 Threat Analysis (TA)
Stage 5 Weakness and Vulnerability Analysis (WVA)
Stage 6 Attack Modeling and Simulation (AMS)
Stage 7 Risk Analysis and Management (RAM)

Answer 334

A

Damage potential
Reproducibility
Exploitability
Affected Users
Discoverability

Answer 335

A

focuses on a description of security machanisms to assess suitability

Answer 336

A

audit focuses on implemented security controls in relation to Availability, security, integrity, and confidentiality

Answer 337

A

Guide to protecting Personally Identifiable Information

Answer 338

A

(A) is created or received by a provider, health authority, employer, life insurer, school or university

(B) Relates to past, present, or future medical or mental health or condition

Answer 339

A

Any data that helps an organization maintain a competitive edge

Answer 340

A

The value of the data to the organization

Answer 341

A

refers to the highest level of classified data

Answer 342

A

prevent data breaches

Answer 343

A

it must be sanitized

Answer 344

A

Labeling systems and media

Answer 345

A

Guidelines for media sanitation

Answer 346

A

Destruction

Answer 347

A

Overwriting

Answer 348

A

Prepares media for reuse in less secure environments

Answer 349

A

Will remain top secret until destroyed

Answer 350

A

Optical CDs, DVDs, or SSDs

Answer 351

A

cleartext data into scrambled ciphertext

Answer 352

A

Most popular symmetric algorithym

NIST selected to replace DES

Answer 353

A

128, 192, and 256

Answer 354

A

Developed as possible replacement for DES
First implemented with 56 bit keys
Newer implementations uses 112 bit or 168 bit keys

Answer 355

A

Master Card, Visa, and Europay standard

These are smart cards that include a chip and require users to enter a pin

Answer 356

A

Bruce Schneier developed as an alternative to DES

Key sizes 32 to 448 bits

Answer 357

A

Used by Linux

Based on blowfish

adds 128 bits as a salt to protect against

rainbow table attacks

Answer 358

A

data before it is transmitted

Answer 359

A

a sniffing attack

Answer 360

A

(TLS ) Transport Layer Security 1.1 as the underlying protocol

Port 443

Answer 361

A

was the precurser to TLS

Netscape created SSL

Answer 362

A

POODLE attack (Padding Oracle On Downgraded Legacy Encryption.

Answer 363

A

Padding Oracle On Downgraded Oracle Legacy Encryption

Organizations no longer use SSL because of POODLE

Answer 364

A

TLS and IPSEC

Answer 365

A

Layer 2 Tunneling Protocol (L2TP) for VPNs
L2TP transmits in clear text
L2TP/IPSEC encrypts data and sends in tunnel mode

Answer 366

A

Authentication Header

Provides Authentication and Integrity

Answer 367

A

Encapsulating Security Payload to provide Confidentiality

Answer 368

A

Used to protect data in transit on internal networks

Answer 369

A

other protocols
Secure Copy (SCP) and Secure File Transfer Protocol (SFTP) to transfer encrypted files over a network

Answer 370

A

Administer remote servers

SSH encrypts all traffic, including passwords

Answer 371

A

Establish rules for appropriate use and protection of data/information
(rules of behavior) =Acceptable use policy
Provides input to information systems owners regarding the security requirements and security controls where the data resides
Decides who has access to the information system and with what types of privileges or access rights
Assists in the identification and assessment of the common security controls where the data resides

Answer 372

A

person who owns the asset or system that processes sensitive data

Develops a system security plan in coordination with information owners, system administrator, and functional end users
Maintains the sytem security plan and ensures the system is deployed and operated according yo agreed upon requirements
Ensures that system users and support personel receive training and instruction on rules of behavior (AUP)
Updates system security plan whenever a change occurs
Assists in the identification, implementation, and assessment of common security controls

Answer 373

A

EU US privacy shield

Answer 374

A

Notice: must inform individuals about the purpose of retained data
Choice: An organization must offer individuals opportunity to opt out
Accountabiity for onward transfer
Security
Data Integrity and purpose limitation
Access: individuals must have access to the ino
Recourse, Enforcemement, and liability

Answer 375

A

Alias. Replacing data with artificial identifiers

Answer 376

A

Like pseudonymization

Answer 377

A

Removes all identifiable information

Answer 378

A

replaces data

Answer 379

A

Responsible for granting rights

Answer 380

A

protect security and integrity of data

Answer 381

A

Establish a minimum

Answer 382

A

General Data Protection Regulation

Answer 383

A

tool used to conceptually understand the structure and behavior of a complex entity through different views

Answer 384

A

formal description and representation of a system

Answer 385

A

describes the major components of the system and how they interact with each other, the users, and other systems

Answer 386

A

refers to the entire life cycle of a system.

Including planning, analysis, design, building, testing, deployment, maintenance, and retirement phases.

Answer 387

A

Can be an individual computer, application, a set of sub systems, a set of computers, or a set of networks

Answer 388

A

System and software engineering–Architecture description

Goal is to internationally standardize how system architecture takes place so developers aren’t just winging it.

Answer 389

A

Architecture is fundamental organization of a system
Architecture description documents to formalize architecture
Stakeholder is an individual or team with interests in, or concerns related to, a system
View is representation of a whole system from the perspective of concerns
Viewpoint is template from which to develop views

Answer 390

A

Individual, team, or organization with interests or concerns in a system

Answer 391

A

Representation of a whole system from the perspective of a related set of concerns

Answer 392

A

the brain of the computer
fetches instructions from memory and executes them,
contains millions of transisters
contains registers that point to memory locations

Answer 393

A

is a temporary storage location

Answer 394

A

Arithmetic logic unit (ALU)

Answer 395

A

the brain of the CPU and the cpu is the brain of the computer

Answer 396

A

Manages and synchronizes the system

Control unit is the component that fetches code, interprets code, and oversees the execution of different instruction sets

Control unit does not actually process data

It directs

Answer 397

A

is executing instructions serially, one at a time

Answer 398

A

to hold variables and temporary results as the ALU works through its execution steps
General registers are the ALUs scratch pad

Answer 399

A

contains the memory address of the next instruction to be fetched

Answer 400

A

hold different condition bits
one bit indicates whether the CPU should be working in user mode (problem state) or privileged mode (also called kernal or supervisor mode

Answer 401

A

work is handed to processors as needed

load balancing

Answer 402

A

when a processor is dedicated

Answer 403

A

Must be continuously refreshed

Answer 404

A

continuous refreshing

Answer 405

A

Memory type and amount
Memory addressing
Bus speeds

Answer 406

A

Synchronizes itself with the system’s CPU
Coordinates activities with the CPU clock
Increases speed of transmitting and executing data.

Answer 407

A

Faster than DRAM because DRAM can only access Cone block of data at a time.
It is a “look ahead” feature that speeds the process

Answer 408

A

Can send more data at once

Answer 409

A

Caries out read operations on the rising and falling of clock pulse

Answer 410

A

Systems of a high trust level may need to segment memory physically instead of just logically

Answer 411

A

Nonvolatile memory
When power is turned off, data is still held within memory chips.
Data cannot be altered
Software stored in ROM is firmware

Answer 412

A

Can be erased, modified, and upgraded.
Holds data that can be electrically erased or written to
UV light device requires to erase

Answer 413

A

Can be erased electronically

Answer 414

A

used in digital cameras, bios chips, memory cards, and video game consoles.

Answer 415

A

Used for high-speed writing and reading activities.

Can be accessed more quickly than data in other types

Answer 416

A

L1 is fastest.. L2 is slower, L3 is slowest

Answer 417

A

Dire

has physical wires connected to memory chips within the computer

Uses physical addresses instead of pointers (logical addresses)

Answer 418

A

Used by CPU

Not by software

Answer 419

A

Logical pointed to memory addresses

Accessing memory indirectly provides an access control layer

Answer 420

A

its access rights are verified

Answer 421

A

The physical memory addresses used by the CPU

Answer 422

A

used by software

Answer 423

A

based on a known address with an offset value applied

Answer 424

A

takes place when too much data is accepted as input to a specific process

Answer 425

A

a small bucket.

When the bucket overflows, data goes into other bucke

Answer 426

A

Not validating user’s input
make a function call
We use an insecure function (strcopy)

Answer 427

A

Implemented via hardware or software (operating system)

Helps ensure that executable code does not function in dangerous memory segments

Answer 428

A

1 Developing better code

2 Garbage collector used to identify unused committed memory

Answer 429

A

Memory segmentation

Changes memory addresses constantly

Answer 430

A

More than one program, or process, can be loaded into memory

Only means that more than one application can be loaded into memory at one time

Multiprogramming was replaced by multitasking

Multiprogramming is a legacy term

Answer 431

A

More than one application can be in memory at th same time. Operating systems can deal with different applications simultaneously

Answer 432

A

cooperative and then evolved into preemptive multitasking

Answer 433

A

Cooperative used by Windows 3.1. Preemptive used by Win 95

Answer 434

A

Running state CPU executing instruction and data

Ready state Waiting to send application data to the CPU

Blocked state waiting for user input

Answer 435

A

Kept by operating system which has one entry for each processes stat, stack pointer, memory allocation,program counter, and status of open files

Answer 436

A

Interupts

Answer 437

A

maskable interupt is not important

unmaskable can never be over ridden

Answer 438

A

2 processes in the same interupt

Answer 439

A

Encapsulation of objects
Time multiplexing of shared resources
Naming distinctions
Virtual memory mapping

Answer 440

A

no other process understands or interacts with its code

Answer 441

A

data hiding

Answer 442

A

Resource sharing

Answer 443

A

Provide abstraction level for programmers
Maximize performance with limited amount of memory available
Protect the operating system and applications loaded into memory

Answer 444

A

the details of something are hidden

Answer 445

A

Small amounts of memory very fast and expensive (registers and cache)
Larger amounts of memory are slower and less expensive (RAM, hard drive)

Answer 446

A

Relocation
Swap contents from RAM to the hard drive as needed
Provide pointers for applications 
Protection
Sharing
Logical organization
Physical organization

Answer 447

A

When RAM and secondary storage are combined

Answer 448

A

all of the operating systems work in kernal mode

Answer 449

A

separates system functionality into hierarchical layers

Answer 450

A

someone working in a shell cannot bust out of it

Answer 451

A

a boundary that divides the trusted from the untrusted

Answer 452

A

An abstract machine that mediates all access subjects have to objects

Answer 453

A

Made up of software, hardware, and firmware that fall within the TCB and implements and enforces the reference monitor

Answer 454

A

outlines goals without regard to how they will be accomplished

Answer 455

A

is a framework that gives the policy form and solves security access problems for particular situations

Answer 456

A

enforces confidentiality aspects of access control

was the first mathematical model of a multilevel security policy

called a multilevel security system because users with difference clearances use the system, and the systems processes data at different classification levels

Answer 457

A

secrets stay secret

Provides and addresses confidentiality only

Answer 458

A

subject at a given security level cannot read data that resides at a higher security level

No read up

Answer 459

A

subject in a given security level cannot write information to a lower level.of the data within the system

No write down

Answer 460

A

addresses the integrity

Not concerned with security levels and confidentiality

Prevents data at any integrity level from flowing to a higher integrity level

Answer 461

A

Subject cannot write data to a higher integrity level

No write up

Answer 462

A

Subject cannot read data from a lower integrity level

No read down

Answer 463

A

Subject cannot request service (invoke) at a higher integrity level

Answer 464

A

data flows

Answer 465

A

developed after Biba

Protects the integrity of information

Answer 466

A

Users: Active agents

Transformational Procedures (TPs) Programmed abstract operations, such as read, write and modify

Constrained data items (CDIs) Con be manipulated only by TPs

Unconstrained data items (UDIs) Can be manipulated by users via primitive read and write operations
Integrity verification procedures (IVPs) Check the consistency of CDIs with external reality

Answer 467

A

Well formed transactions and separation of duties

Answer 468

A

series of operations that transform a data item from one consistent state to another

Answer 469

A

separates data into one subset that requires a high level of protection and one level that does not require a high level of protection

The unconstrained data item. UDI

Users cannot directly modify CDI

Answer 470

A

Multi level security model

Answer 471

A

a way for an entity to receive information in an unauthorized manner.

Answer 472

A

storage and timing

Answer 473

A

processes are able to communicate through some type of storage space on the system

Answer 474

A

one process related information to another by modulating system resources

Answer 475

A

also called the Chinese wall
subject can write to an object if, and only if, the subject cannot read another object that is in a different dataset.
access controls can change dynamically depending on previous actions

Answer 476

A

protect against conflicts of interest

Answer 477

A

defines a set of basic rights in terms of commands that a specific a subject can execute on and object

Answer 478

A

How to securely create an object
How to securely create a subject
How to securely delete a subject
How to securely provide read access rights
How to securely provide the grant access rights
How to securely provide transfer access rights

Answer 479

A

Shows how a finite set of procedures can b e available to edit the access rights of a subject

Answer 480

A

A framework where users specify their security requirements and vendors make claims about how they satisfy those requirements and independent labs can verify those claims

Answer 481

A

EAL 1 Functionally tested
EAL 2 Structurally tested
EAL 3 Methodically tested and checked
EAL 4 Methodically designed, tested, and reviewed
EAL 5 Semi formally verified design and tested
EAL 6 Semiformally verified design and tested
EAL 7 Formally verified design and tested

Answer 482

A

is the international standard that is used as the basis for the evaluation of security properties of products
ISO/IEC 15408 1 Introduction and general model
2 Security functional requirements
3 Security assurance components

Answer 483

A

technical evaluation of the security components and compliance for the purpose of accreditation
Purpose is to ensure a system, product, or network is right for customer’s purpose

Answer 484

A

formal acceptance of the adequacy of a systems overall security and functionality by management

Certification information is presented to management for review and decisions.

Certification is technical review

Accreditation is management review

Answer 485

A

developed to integrate easily with other systems = open

Closed is proprietary

Answer 486

A

is one in which multiple computers work together to do something.

Answer 487

A

the user of shared, remote computing devices for the purpose of providing improved efficiencies

Answer 488

A

user is allowed to use a specific application that executes in the provider’s environment

Answer 489

A

user gets access to a computing platform that is typically built on a server operating system

Service provider is normally responsible for configuring and securing the platform

Answer 490

A

full, unfettered access and responsibility

Service provider has no responsibility

Answer 491

A

simultaneous use of multiple computers to solve a specific task by dividing it among the available computers

Answer 492

A

act of combining information from separate sources

Answer 493

A

the intended result of aggregation

Answer 494

A

based on the sensitivity of data. The smaller the subset of individuals who can gain access

Answer 495

A

software understands what actions should be allowed

Answer 496

A

cell suppression
partitioning the database
noise
perturbation

Answer 497

A

hide specific cells

Answer 498

A

dividing the database into different parts

Answer 499

A

technique of inserting bogus information

Answer 500

A

information technology that is specifically designed to control physical devices in industrial processes

Maintaining efficiency is key

Answer 501

A

designed to control electro mechanical processes such

as assembly lines, elevators, roller coasters, and nuclear centrifuges

Answer 502

A

network of control devices within fairly close proximity

Answer 503

A

Developed to control large scale physical processing involving nodes separated by significant distances

Answer 504

A

back door

Answer 505

A

deals with the sequence of steps a systems uses to complete a task

Known as an asynchronous attack

Answer 506

A

When processes get out of sequence

Answer 507

A

each character is replaced with another character

Answer 508

A

uses multiple alphabets

Answer 509

A

algorithm

Answer 510

A

Spartans encrypted using a sheet of papyrus wrapped around a staff

Answer 511

A

27 shift alphabets

Answer 512

A

Plaintext is readable encrypted text is ciphertext

Answer 513

A

German box with rotors

Answer 514

A

developed by IBM

introduced complex mathematical equations and functions to establish DES

Answer 515

A

science of studying and breaking the secrecy of encryption processes, compromising authentication schemes, and reverse engineering algorithms and keys

Answer 516

A

system or product that provides encryption

Answer 517

A

Software
Protocols
Algorithms
Keys

Answer 518

A

Only secret in a cryptographic system would be the key

Answer 519

A

the algorithm
the secrecy of the key
length of the key
initialization vectors
and how the all work together

Answer 520

A

with the amount of necessary processing power, resources, and time required to break it

Answer 521

A

is to make compromising it too expensive or time consuming. aka work factor

Answer 522

A

Confidentiality
Integrity
Authentication
Authorization
Nonrepudiation

Answer 523

A

perfect encryption scheme

by Gilbert Vernam = the Vernam cipher
Uses exclusive OR

Answer 524

A

If both values are the same the result is 0

If different, XOR is 1

Answer 525

A

Pad must be used only one time
Pad must be as long as the message
pad much be securely distributed and protected at its distribution
Pad must be made up of truly random values

Answer 526

A

by seeding an initial value Initialization vector

Answer 527

A

non electronic algorithm.

could be a set of books

Answer 528

A

a message within a cipher

null cipher steganography

Answer 529

A

method of hiding data in another media type

Answer 530

A

values are scrambled

Answer 531

A

two instances of the same key for encryption and decryption

also called secret keys

Answer 532

A

N(N-1) /2

Answer 533

A

Much faster than asymmetric systems

Hard to break if using a large key size

Answer 534

A

Requires a secure mechani

Each pair of users needs a unique key

Answer 535

A

Confidentiality but not authenticity or non-repudiation

Answer 536

A

Data Encryption Standard (DES)
Triple DES  (3 DES)
Blowfish
International Data Encryption Algorithm
RC4, RC5, RC6

Answer 537

A

If confidentiality is the most important to a sender, encrypt with receiver’s public key

Answer 538

A

If authentication is the most important security for the sender, use sender’s private key

Answer 539

A

authentication and non-repudiation

Answer 540

A

Public Key Cryptography

Answer 541

A

Better key distribution than symmetric systems
Better scalability than symmetric systems
Can provide authentication and non-repudiation

Answer 542

A

Works much more slowly than symmetric systems

Mathematically intensive tasks

Answer 543

A

Rivest- Shamir-Adleman (RSA)
Elliptic Curve Cryptosystem  (ECC)
Diffie Hellman
El Gamal
Digital Signature Algorithm  (DSA)

Answer 544

A

Confusion and diffusion

Confusion is substitution

Diffusion is transposition

Answer 545

A

Confusion and diffusion

Confusion is substitution

Diffusion is transposition

Answer 546

A

when bits of a block are scrambled

Answer 547

A

A small change completely changes the cipher

Answer 548

A

S Boxes with lookup tables

Answer 549

A

Used in symmetric algorithms to scramble and substitute plaintext into ciphers

Answer 550

A

treats the message as a stream of bits and performs mathematical functions on each bit

Answer 551

A

keystream generators that produce a stream of bits that are XORed with plaintext to make a cipher

Answer 552

A

provide same protection

Answer 553

A

Random values to prohibit patterns in encryption

Answer 554

A

Asymmetric key is used to encypt symmetric key that encrypts the message

Answer 555

A

a single use symmetric key

Answer 556

A

Key size of 64 bits with 8 bits of parity so 56 bit

Answer 557

A

that fulfills DES

Answer 558

A

Electronic Code Book  (ECB)
Cipher Block Chaining  ((CBC)
Cipher FeedBack (CFB)
Output Feedback  (OF)
Counter (CTR)

Answer 559

A

64 bit data block with a key and a block of ciphertext
ECB incorporates padding
Code book provides substitutions and permutations

Answer 560

A

A block of plain text and a key will always give the same cipher text
Does not reveal patterns because each block is based on the previous

Answer 561

A

Shorter streams

Answer 562

A

Block cipher that emulates a stream

Answer 563

A

Nothing is chained

Answer 564

A

Quick fix for DES

48 rounds in its computation

Answer 565

A

Symmetric block cipher key sizes of 128, 192, 256

Answer 566

A

MARS  By IBM team that created lucifer
RC6  Developed by RSA Laboratories
Serpent 
Two Fish
Rijndael

Answer 567

A

128, 192, 256 keys

Answer 568

A

64 bit block divided into 16 smaller blocks

Answer 569

A

Block cipher

key size from 32 up to 448 bits and 16 rounds of functions

Answer 570

A

Most commonly implemented stream ciphers

Used in SSL

Answer 571

A

Secure key transfer

Uses digital signatures

Answer 572

A

Most popular public key algorithm
Factors large numbers by using prime numbers
One way function

Answer 573

A

public key algorithm can be used for digital signatures

Answer 574

A

Like RSA digital signatures, secure key distribution, and encryption

Very efficient. Used in devices with limited processing capacity, storage, power supply, and bandwidth.

Answer 575

A

Developed by Merkle-Helman

Discovered to be insecure

Answer 576

A

Only the owner of a private key can prove possession

Answer 577

A

Takes a variable length string and produces a fixed length value
Hash is not secret.
Takes place without the use of keys

Answer 578

A

authentication scheme derived by applying a secret key to a message in some f

Answer 579

A

Hash MAC (HMAC)
CBC-MAC, and CMACA

Answer 580

A

Symmetric key is concatenated with the message

Answer 581

A

Cipher Block Chaining Message Authentication Code
Message is encrypted with symmetric block cipher
Weakest form of authentication because it is not bound to a user, just to a computer or device

Answer 582

A

used with the Digital Signature Standard

SHA produces a 160 bit hash value or Message Digest

Answer 583

A

against a one-way hash

Answer 584

A

When 2 different messages produce the same hash.

Answer 585

A

is a hash value with a private key,

Answer 586

A

A message encrypted provides confidentiality
A message hashed provides integrity
A message digitally signed provides Authentication, nonrepudiation and integrity
A message encrypted and digitally signed provides confidentiality with authentication, nonrepudiation, and integrity

Answer 587

A

Used in digital signatures

Answer 588

A

Mechanism for the CA to check on a certificate

Answer 589

A

Replaces the CRL

Answer 590

A

most challenging part of cryptography

Answer 591

A

Eavesdropping and sniffing data as it passes over a network

Because it does not affect the protocol, algorithm, key, or message

Answer 592

A

Altering messages, modifying system files, and masquerading as another individual or acts.

Answer 593

A

Key
Algorithm
implementation
data
People

Answer 594

A

Attacker has 2 ciphertext messages
Each has been encrypted with same algorithm
Attacker gets the key to one

Answer 595

A

Attacker has plaintext message and ciphertext

Goal is to discover the key

Answer 596

A

attacker has plaintext and cipher text. Can choose plaintext and compare ciphertext.

Answer 597

A

attacker can choose ciphertext and has access to the resulting decrypted plaintext. Goal is to figure out the key

Attacker may need control of the system

Answer 598

A

Takes 2 messages of plaintext and follows the changes as blocks go thought the different S boxes

Answer 599

A

Public is better

government uses private

Answer 600

A

functions to identify the highest probability of a specific key

Answer 601

A

Reverse engineering to uncover a key or data

Answer 602

A

Captures data and resubmits it.

Timestamps and sequence numbers are 2 countermeasures

Answer 603

A

Analyze vulnerabilities in math used in an algorithm

Answer 604

A

identify algorithm structural weaknesses or flaws

Answer 605

A

identify statistical weaknesses in algorithm design

Answer 606

A

Trick people into providing cryptographic key or divulging sensitive information

Answer 607

A

break a math problem from both ends

Answer 608

A

Natural environmental threats
Supply system threats
Manmade threats
Politically motivated threats
Protecting human life is always first

Answer 609

A

Physical controls should work together in a tiered architecture

Answer 610

A

a weakness

Answer 611

A

the potential someone will identify the weakness and use it

Answer 612

A

person or mechanism that exploits the vulnerability

Answer 613

A

1 Identify a team
2 Define the scope
3 Carry out risk analysis to identify vulnerabilities and threats
4 Identify legal and regulatory requirements
5 Work with management to define an acceptable risk level
6. Derive required performance baselines
7. create countermeasure and performance metrics
develop criteria
8 Develop criteria from results
9 identify and implement countermeasures
10 Continuously evaluate countermeasures

Answer 614

A

Deterrence
Delaying
Detection
Assessment
Response

Answer 615

A

Design of a physical environment to reduce crime by affecting human behavior

Answer 616

A

focuses on denying access

Answer 617

A

Bollards, lights,

Answer 618

A

Active vs backup

Answer 619

A

Fuel
Oxygen
high temperatures

Answer 620

A

A common combustibles Wood paper, laminents water foam

B Liquid Petroleum and coolants
Gas Co2, foam, dry powders

C Electrical Electrical and wires
Gas, Co2, powders

D combustible metals
Magnesium, sodium, potassium Dry powder

Answer 621

A

Banned Halon in 1987

Answer 622

A

open space in ceilings, walls and floors

Answer 623

A

Wet pipe
Dry pipe
Preaction
Deluge

Answer 624

A

uses a shift of the alphabet

Answer 625

A

Frequency analysis

Answer 626

A

Confidentiality

Integrity

Authentication

nonrepudiation

Answer 627

A

Range of values that are valid for use as a key for a specific algorithm

Answer 628

A

Cryptography system should be secure if everything about the system is known but the key

Answer 629

A

Initialization Vector

Answer 630

A

How to measure the strength of a cryptography system

Work factor should exceed the value of the data

Cryptography should be cost effective

Answer 631

A

code is communication

Ciphers should not

Answer 632

A

Rearranges letters of a plaintext message

Answer 633

A

Algorithm to replace each character or bit of a plaintext message

Answer 634

A

Use multiple alphabets in the same message

Vigenere Cipher

Answer 635

A

Uses a single encryption/decryption chart

Answer 636

A

uses a different substitution cipher for each letter of the plaintext message

Also known as Vernam ciphers

They are an unbreakable encryption scheme

One time pad is as long as the message itself

Pad must be used only once

Answer 637

A

One time pads

Answer 638

A

Often chosen from a book

Answer 639

A

operate on chunks or blocks

Transposition ciphers are examples

Answer 640

A

operate one character bit at a time

Ceaser Cipher is an example

One time pad is a stream cipher

Answer 641

A

Confusion and Diffusion

Answer 642

A

Relationship between plaintext and key is so complicated that cryptoanalysis won’t work

Answer 643

A

change in plaintext results in multiple changes throughout the cipher text

Answer 644

A

Symmetric encryption

aka secret key or private key

Answer 645

A

Key distribution problem
Symmetric key does not cover non repudiation
Not scalable
Keys must be regenerated often

Answer 646

A

very fast

Answer 647

A

aka public key algorithms

Each user has 2 keys Public and private

Provide support for digital signatures

Answer 648

A

digital signature capability when used with a message digest

Answer 649

A

summaries of a message’s content

Answer 650

A

2 messages create the same hash

Answer 651

A

Data Encryption Standard DES

Triple DES

International Data Encryption Algorithm IDEA

Blowfish

Skipjack

Advanced Encryption Standard AES

Answer 652

A

No longer secure

Superceded by AES

64 bit block

DES key is 56 bits long

Answer 653

A

Electronic Code Book ECB

Cipher Block Chaining CBC

Cipher Feedback CF

output feedback OFB

Counter CTR

Answer 654

A

Uses the same DES algorithm 3 times

Effective key length of 168 bits for DES EDE3

DES EEE2 uses 112 bits

DES EDE2 uses 112 bits

Answer 655

A

64 bit blocks
begins operation on the 128 bit key
52 16 bit keys
Uses same 5 modes used by DES
ECB
CBC
CFB
OFB
CT

Answer 656

A

Bruce Schneiers alternate DES and IDEA
64 blocks of text
Variable length keys ranging from 32 bits to 448 bits

Answer 657

A

Approved for use by US government in FIPS
64 bit blocks
80 bit key
Supports key escrow

Answer 658

A

Symmetric algorithm patented by Rivest Shamir Adelman RSA
Variable block sizes of 32 64, 128
Subject to brute force cracking attempts

Answer 659

A

Rijndael block cipher chosen to replace DES

In 2001 NIST FIPS mandated AES for all sensitive but unclassified data

Answer 660

A

128
192
256

allows processing of 128 bit blocks

Answer 661

A

Developed by Bruce Schneier was a finalist

Prewhitening and postwhitening

Answer 662

A

Message is encrypted with symmeric for speed

Key is encrypted with asymmetric

Answer 663

A

Fair cryptosystems keys are divided in 2 or more pieces

Escrowed Encryption Standard provides government with a means to decrypt.

Basis of skipjack

Answer 664

A

Restrict access to specific time periods

Answer 665

A

Senior Manager
Network Admin
Security
Programmer
Public Relations

Answer 666

A

Multi Station Access Unit

Central hub in a token ring

Brainscape's Knowledge GenomeTM

CISSP DOMAIN 1 Flashcards

git r done

Brainscape's Knowledge Genome^TM