DEV Flashcards

1
Q

set of best practices for programmers to seek in all application or database design: Atomicity, Consistency, Isolation, Durability

A

ACID test

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Authenticode, relies on digital signatures, annoying dialogs people click away

A

Active X

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

a library of commands maintained by a system for other programs to use, provides consistency and integrity for the programs

A

Application Programming Interface

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

is the tool that converts a high level language into machine language

A

Assembler

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Converts machine-code into binary machine instructions. Translate assembly language into machine language.

A

Assembler - DEV

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

low-level programming language with a few simple operations this code is harder to maintain, less readable, and has the potential to be substantially longer

A

Assembly Code

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

indivisible, data field must contain only one value that either all transactions take place or none do

A

Atomicity

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Program installed by an attacker to enable him to come back on a later date without going through the proper authorization channels, maintenance hook for developers sometimes

A

Backdoor

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Results exhibited by an object in response to a msg

A

Behavior

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Most significant byte is stored first. SPARC uses this architecture.

A

Big Endian

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

When a Windows system experiences a dangerous failure and enters a full secure state (reboot)

A

Blue Screen of Death

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Moves or overwrites the boot sector with the virus code

A

Boot sector

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Attacks the MBR - the portion of bootable media that the computer uses to load the operating system during the boot process. MBR viruses store the majority of their code on another portion of the storage media

A

boot sector infector

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

organized group of compromised computers

A

Botnet

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

an area of memory allocated with a fixed size. It is commonly used as a temporary holding zone when data is transferred between two devices that are not operating at the same speed or workload.

A

Buffer

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Occurs when an area that has been allocated a specific storage space has more data copied to it than it can handle. Two classes include heap and stack overflow.

A

Buffer Overflow

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

program code that is in between the high level language code understood by humans and machine code read by computers.

A

Byte Code

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

An attribute that is a unique identifier within a given table, one is chosen to be the primary and the others are alternate. Subset of attributes that can be used to uniquely identify any record in a table. No two records in the same table will ever contain the same values for all attributes. Each table may have one or more, which are chosen from column headings.

A

Candidate Key

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

Tool for development, if concerned about security

A

CASE

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

a business managers and software engineer’s process to protect the organization from development-related issues. Has three components: Request, Change, and Release Control

A

Change Management Process

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

part of a transaction control for a database which informs the database of the last recorded transaction

A

Checkpoint

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

OOP concept of a template that consist of attributes and behaviors

A

Class

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

converts source code to an executable

A

compiler

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q

Write code correctly first time, quality thru design

A

Cleanroom

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
25
Q

Is an opposing coding stance that keeps source code confidential. Can be reverse engineered or decompiled

A

Closed source

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
26
Q

Is one that is proprietary with no third-party product support, does not define if it’s code can be viewed

A

Closed system

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
27
Q

Peer-driven process that includes multiple developers, may be automated, may review several hundred lines an hour, done after it’s developed

A

Code Review

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
28
Q

Ability to perform without use of other programs, strength of the relationship between the purposes of methods within the same class

A

Cohesion

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
29
Q

Support exchange of objects amongst programs. This used to be called OLE. DCOM is the network variant (distributed)

A

COM, Common Object Model

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
30
Q

infected code is stored not in the host program, but in a separate files. Takes advantage of search order of an OS

A

Companion virus

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
31
Q

converts source code to an executable

A

Compiler

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
32
Q

Translates higher level program into an executable file

A

Complier - DEV

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
33
Q

Appended to executables

A

Compression

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
34
Q

Periodic, should be conducted to ensure that the actual production environment is consistent with the accounting records and that no unauthorized changes have taken place.

A

Configuration Audit

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
35
Q

Ensures that changes to software versions are made in accordance with policies. Updates can be made only from authorized distributions in accordance with those policies.

A

Configuration Control

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
36
Q

Administrators document covered software products throughout the organization.

A

Configuration Identification

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
37
Q

Used to control the version( s) of software used throughout an organization and formally track and control changes

A

Configuration Management Process

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
38
Q

property that data is represented in the same manner at all times

A

Consistency

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
39
Q

Broker architecture enables programs written in different languages and using different platforms and OS’s through IDL (Interface Definition Language)

A

CORBA, Common object request

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
40
Q

Effect on other modules. Level of interaction between objects

A

Coupling

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
41
Q

Is a way to receive information in an unauthorized manner, information flood that is not protected by a security mechanism

A

Covert channels

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
42
Q

Processes communicate via storage space on the system; Writing to storage by one process and reading by another of lower security level.

A

Covert Storage Channel

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
43
Q

One process relays to another by modulating its use of system resources. Typing rhythm of Morse Code is an example

A

Covert timing channel

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
44
Q

malware that uses the trust on a website to redirect users to untrusted websites which captures data or installs more malware

A

Cross Site Scripting

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
45
Q

attacks exploit the trust that sites have in a user’s browser by attempting to force the submission of authenticated request to third-party sites.

A

CSRF (XSRF)
Cross Site Request Forgery

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
46
Q

false memory reference

A

Dangling pointer

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
47
Q

a description of a database

A

Data Dictionary

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
48
Q

malware that makes small random changes to many data points

A

Data Diddler

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
49
Q

a feature of object oriented programming languages. Classes and variables may be marked private, which restricts outside access to the internal workings of a class.

A

Data Hiding

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
50
Q

small data warehouse

A

Data marts

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
51
Q

specifies the way data will be stored in memory

A

Data Type

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
52
Q

z-Mixing data with different classification levels and/ or need-to-know requirements and is a significant security challenge. Often, administrators will deploy a trusted front end to add multilevel security to a legacy or insecure DBMS

A

Database Contamination

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
53
Q

Process of splitting a single database into multiple parts, each with a unique and distinct security level or type of content

A

Database Partitioning

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
54
Q

a copy of transaction data, designed for querying and reporting

A

Data warehouse

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
55
Q

a collection of information designed to reduce duplication and increase integrity

A

Databases

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
56
Q

Schemas, blueprints; tables, views

A

DB main components

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
57
Q

Refers to a suite of software programs that maintains and provides controlled access to data components stored in rows and columns of a table

A

DBMS

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
58
Q

subset of SQL used to control access to data in a database, using GRANT and REVOKE statements

A

DCL - Data Control Language

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
59
Q

enables applications to work in a client/server model by providing the inter-process communications mechanism (IPC)

A

DDE - Dynamic Data Exchange

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
60
Q

defines structure and schema

A

DDL - Data Definition Language

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
61
Q

a condition in which neither party is willing to stop their activity for the other to complete

A

Deadlock

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
62
Q

Forwarding a request to another object

A

Delegation

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
63
Q

an availability attack, to consume resources to the point of exhaustion

A

Denial of Service

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
64
Q

a combination of Development and Operations, symbolizing that these functions must merge and cooperate to meet business requirements

A

DevOps

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
65
Q

Attempt to force the web application to navigate up the file hierarchy and retrieve a file that should not normally be provided to a web user

A

Directory Traversal Attack

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
66
Q

When one transaction reads a value from a Db that was written by another transaction that did not commit, Db concurrency issue

A

Dirty Reads

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
67
Q

software tool is used to convert compiled programs in machine code to assembly code

A

Disassembler

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
68
Q

an availability attack, to consume resources to the point of exhaustion from multiple vectors

A

Distributed Denial of Service

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
69
Q

view, control and use the database via VIEW, ADD, MODIFY, SORT and DELETE commands

A

DML - Data Manipulation Language

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
70
Q

what is will remain, persistence

A

Durability

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
71
Q

Created on the fly by software in an Object Oriented Programming environment. Preassembled code that is a self-contained module

A

Dynamic Lifetime Objects

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
72
Q

a programming component that runs on Win32 systems and contains functionality that is used by many other programs

A

DLL - Dynamic Link Library

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
73
Q

a feature of object-oriented programming, provides a logical structure to a program and allows for easy methods of inheritance

A

Encapsulation

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
74
Q

Seek to embody accumulated knowledge on a particular subject and apply it in a consistent fashion to future decisions. Has two main components: the knowledge base and the inference engine.

A

Expert Systems

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
75
Q

causes a software vulnerability to be triggered and leveraged by the attacker

A

Exploit

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
76
Q

Allow programmers to create code using visual interfaces

A

Fifth-Generation Languages (5GL)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
77
Q

Include all machine languages

A

First-Generation Languages (1GL)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
78
Q

Represents a reference to an entry in some other table that is a primary key there. Link between the foreign and primary keys represents the relationship between the tuples. Enforces referential integrity Main Components of a Db using Db - Schemas; blueprints - tables - views

A

Foreign Key

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
79
Q

Attempt to approximate natural languages and include SQL, which is used by databases

A

Fourth-Generation Languages (4GL)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
80
Q

a miniature program

A

Function

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
81
Q

Define need, requirements, review proposed security controls

A

Functional Analysis and Planning

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
82
Q

Bar type; shows the interrelationships over time between projects and schedules. Graphical illustration of a schedule that helps plan, coordinate, and track specific project tasks. WBS a subpart

A

Gantt Chart

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
83
Q

Is similar to process isolation in purpose. Difference is this enforces these requirements through the use of physical hardware controls rather than the logical process isolation controls imposed by an operating system

A

Hardware segmentation

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
84
Q

an area of memory utilized by an application and is allocated dynamically at runtime. Static variables are stored on the stack along with data allocated using the malloc interface.

A

Heap

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
85
Q

Behavioral can detect new malware

A

Heuristic ANTI-Virus

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
86
Q

Module largely affects many more modules

A

High coupling

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
87
Q

False warnings

A

HOAXES

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
88
Q

Single patch, patches provide updates to operating systems and applications

A

Hotfix, update, Security fix

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
89
Q

uncheck data input which results in redirection

A

HTTP Response Splitting

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
90
Q

When one transaction is using an aggregate function to summarize data stored in a Db while a second transaction is making modifications to a Db, causing incorrect information

A

Incorrect Summaries

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
91
Q

to jump to a conclusion

A

Inference

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
92
Q

object-oriented organization and encapsulation allow programmers to easily reuse previously written code. It saves time since programmers do not have to recode previously implemented functionality.

A

Inheritance

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
93
Q

OOP concept of an object at runtime

A

Instance

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
94
Q

in the case of unsigned values, this occurs when an overly large unsigned value is sent to an application that “passes” the integer back to zero or a small number

A

Integer Wrapping

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
95
Q

line by line translation from a high level language to machine code

A

Interpreter

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
96
Q

Reads higher level code, one line at the time to produce machine instructions

A

Interpreter - DEV

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
97
Q

another subject cannot see an ongoing or pending update until it is complete

A

Isolation

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
98
Q

modern, object oriented programming language. It combines a similar syntax to C and C++ with features such as platform independence and automatic garbage collection.

A

Java

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
99
Q

Interpreted language that does not make use of a complier to transform code into an executable state. Java, C, and C++ are all compiled languages

A

JavaScript

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
100
Q

Used by processor to execute instructions from OS

A

Kernel Mode

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
101
Q

Implement a structure similar to the ring model used for operating modes and apply it to each operating system process

A

Layering processes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
102
Q

the least significant byte is stored first

A

Little Endian

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
103
Q

a program that waits for a condition or time to occur that executes an inappropriate activity

A

Logic bomb

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
104
Q

Executes when a certain event happens (like accessing a bank account or employee being fired) or a data/time occurs

A

Logic Bomb/Code Bomb

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
105
Q

Tool used for covert channel that writes data directly after the ICMP header

A

LOKI

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
106
Q

When one transaction writes a value to the Db that overwrites a value needed by transactions that have earlier precedence

A

Lost Updates

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
107
Q

the hardware address of a particular computer system

A

MAC

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
108
Q

program instructions based upon the CPU’s specific architecture

A

Machine language

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
109
Q

Most common in office productivity documents .doc/.docx

A

Macro Virus

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
110
Q

inappropriate data

A

Malformed input

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
111
Q

a function call dynamically allocates n number of bytes on the heap. Many vulnerabilities are associated with the way this data is handled.

A

malloc

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
112
Q

Bombing, strikes, toxin spills

A

Man-made Threats

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
113
Q

Software solution to manage the myriad mobile devices that employees use to access company resources. Goals are to improve security, provide monitoring, enable remote management, and support troubleshooting

A

MDM - Mobile device management

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
114
Q

a function call is used to fill a heap buffer with a specified number of bytes of a certain character

A

Memset

115
Q

Communication to object to perform an action

A

Message

116
Q

information about data or records

A

Metadata

117
Q

another name for a function in languages such as Java and C#. It may be thought of as a miniature program.

A

Method

118
Q

Essential to keep data with different requirements separate

A

Multilevel Security

119
Q

Infects both the boot sector and executable files; becomes resident first in memory and then infects the boot sector and finally the entire system, uses two or more propagation mechanisms

A

Multipart virus

120
Q

Class inherits characteristics from more than one parent class

A

Multiple Inheritance

121
Q

Capable of implementing a much higher level of security. These systems are certified to handle multiple security levels simultaneously by using specialized mechanisms

A

Multistate systems

122
Q

Fires, explosions, water, storms

A

Natural Threats

123
Q

A popular vulnerability scanner managed by Tenable Network Security, and it combines multiple techniques to detect a wide range of vulnerabilities. It uses port scans to detect open ports and identify the services and protocols that are likely running on these systems. Once it discovers basic details about systems, it can then follow up with queries to test the systems for known vulnerabilities, such as if the system is up-to-date with current patches. Attacker can use to best identify vulnerabilities in a targeted system

A

Nessus

124
Q

Use complex computations to replace partial functions of the human mind, Based on function of biologic neurons, Works with weighted inputs

A

Neural Networks

125
Q

Attached to .exe

A

Non-resident virus

126
Q

a term used to describe a programming variable which has not had a value set, this value is not necessarily the same as a value of “” or 0.

A

NULL

127
Q

design philosophy and a type of programming language, which breaks a program into smaller units. Each unit has it’s own function.

A

Object Oriented Programming

128
Q

unclear buffers or media

A

Object reuse

129
Q

programs are organized into classes. Instances of classes contain data and methods which performs actions on that data.

A

Object-oriented

130
Q

feature that allows applications to communicate with different types of databases without having to be directly programmed for interaction with each type. Acts as a proxy

A

ODBC - Open Database Connectivity

131
Q

a bug is present when a buffer is set up with size n and somewhere in the application a function attempts to write n+1 bytes to the buffer. This often occurs with static buffers.

A

Off-by-one

132
Q

Objects are the basic units, and instances of classes

A

OOD, Design

133
Q

Employment of objects and methods
If class = airplane, objects like fighter plane, cargo plane, passenger plane can be created. Method would be what a plane would do with a message like: climb, dive, and roll

A

OOP, Programming

134
Q

Is a coding stance that allows others to view the source code of a program, distributed free or for a fee

A

Open source

135
Q

Is one with published APIs that allow third parties to develop products to interact with it

A

Open system

136
Q

Release into production. Certification/accreditation

A

Operations and Maintenance

137
Q

Middleware that acts as locators and distributors of the objects across networks

A

ORBs, Object Request Brokers

138
Q

business and technical process of applying security software updates in a regulated periodic way

A

Patch Management

139
Q

Prevents outages from known attacks by ensuring systems are patched. Patches aren’t available for new attacks. However, it doesn’t provide the updates. Ensuring systems are patched reduces vulnerabilities but it does not eliminate them

A

Patch Management system

140
Q

final purpose or result

A

Payload

141
Q

project-scheduling tool used to judge the size of a software product in development and calculate the standard deviation (SD) for risk assessment. Relates the estimated lowest possible size, the most likely size, and the highest possible size of each component. Used to direct improvements in project management and software coding to produce more efficient software

A

PERT - Program Evaluation Review Technique

142
Q

Malicious variation of official BIOS or firmware is installed that introduces remote control or other malicious features into a device. UEFI – replacement for BIOS

A

Phlashing

143
Q

idea that program code can run on different systems without modification or recompilation

A

Platform Independence

144
Q

Occurs when two or more rows in the same relational database table appear to have identical primary key elements but contain different data for use at differing classification levels. It is often used as a defense against inference attacks

A

PolyInstantiation

145
Q

This is also a self-garbling where it changes the “garble” pattern each time it spreads. As a result, it is also difficult to detect

A

Polymorphic virus

146
Q

objects or programming that looks different, but act the same. More accurately: Objects of many different classes that are related by some common super class. When different subclasses may have different methods using the same interfaces that respond differently

A

Polymorphism

147
Q

Provide the sole tuple-level addressing mechanism within the relational model. Cannot contain a null value and cannot change or become null during the life of each entity. When the primary key of one relation is used as an attribute in another relation, it is the foreign key in that relation. Uniquely identify a record in a database

A

Primary Key

148
Q

LIBC function for outputting data to a command-line interface

A

Printf

149
Q

may be viewed as a sequence of instructions, where data at certain memory locations are modified at each step

A

Procedural Language Programs

150
Q

collection of commands that are understood by a computer system and may be written in a high-level language, such as Java or C, or in a low-level assembly language

A

Program

151
Q

Feasibility, cost, risk analysis, Management approval, basic security objectives

A

Project Initiation

152
Q

Execution and memory space assigned to each process

A

Protection domain

153
Q

(MIT’s MULTICS design)
Ring 0 - Operating system kernel. The OS’ core. The kernel manages the HW (for example, processor cycles and memory) and supplies fundamental services that the HW does not provide.
Ring 1 - Remaining parts of the operating system
Ring 2 - I/O drivers and utilities
Ring 3 - Applications and programs
Layers 1 and 2 contain device drivers but are not normally implemented in practice. Layer 3 contains user applications. Layer 4 does not exist

A

Protection Rings

154
Q

a state where two subjects can access the same object without proper mediation

A

Race condition

155
Q

Extortion via the internet, typically encrypting victim’s data and files

A

ransomeware

156
Q

Remote control programs that have the malicious code and allow for unauthorized remote access Back orifice, sub seven, net bus )

A

RAT, Remote Access Trojan

157
Q

All foreign keys reference existing primary keys

A

Referential Integrity

158
Q

an area on the processor used to store information. Intel architecture: eax, ebx, ecx, edx, esi, and edi.

A

Register

159
Q

Once the changes are finalized, they must be approved through procedure

A

Release Control

160
Q

Provides an organized framework within which users can request modifications, managers can conduct cost/ benefit analysis, and developers can prioritize tasks

A

Request Control

161
Q

Loads when a program loads in memory

A

Resident virus

162
Q

Remove. Sanitation and destruction of unneeded data

A

Revisions/Disposal

163
Q

transaction controls for a database, a return to a previous state

A

Rollback

164
Q

malware that subverts the detective controls of an operating system

A

Rootkit

165
Q

malware that makes many small changes over time to a single data point or system

A

Salami

166
Q

a construct used to control code execution. Code executed cannot affect outside systems. This is particularly useful for security when a user needs to run mobile code, such as Java applets.

A

Sandbox

167
Q

Include all assembly languages

A

Second-generation language (2GL)

168
Q

Attempts to hide by garbling its code; as it spreads, it changes the way its code is encoded

A

Self-garbling virus

169
Q

Make sure that rules are enforced on all data types, logical values that could adversely affect the structure of the database

A

Semantic Integrity

170
Q

Builds on the principle of least privilege. Requires the use of granular access permissions; that is, different permissions for each type of privileged operation. This allows designers to assign some processes rights to perform certain supervisory functions without granting them unrestricted access to the system

A

Separation of privilege

171
Q

Collection of unrelated patches released in a large collection

A

Service Pack

172
Q

used by devices to communicate with software. It is normally written by the manufacturer of a hardware device to communicate with the operating system.

A

Service Provider Interface

173
Q

byte code that executes a shell or the code that is executed when an exploit is successful

A

Shellcode

174
Q

Cannot detect new malware

A

Signature based ANTI-Virus

175
Q

Assumed each step could be completed and finalized without any effect from the later stages that may require rework

A

Simplistic Model

176
Q

unused storage capacity

A

Slack space

177
Q

Quality is a direct function of quality of development and maintenance.
Procedures, principles, and practices that underlie development process maturity. 5 Levels:

initiating – competent people, informal processes, ad-hoc, absence of formal process
repeatable – project management processes, basic life-cycle management processes
defined – engineering processes, presence of basic life-cycle management processes and reuse of code, use of requirements management, software project planning, quality assurance, configuration management practices
managed – product and process improvement, quantitatively controlled
Optimizing – continuous process improvement Works with an IDEAL model

A

Software Capability Maturity Model (CMM)

178
Q

Programmers create code. Unit testing Check modules. Prototyping, Verification, Validation

A

Software Development

179
Q

a design methodology which addresses risks early and often

A

Spiral

180
Q

Angular = progress made
Radial = cost
Lower left = development plans
Upper left = objectives of the plans, alternatives checked
Upper right = assessing alternatives, risk analysis
Lower right = final development
Left horizontal axis = includes the major review required to complete each full cycle

A

Spiral Model

181
Q

program that inappropriately collects private data or activity

A

Spyware

182
Q

a type of malformed input that takes advantage of an appropriate true conditional logic statement adding a request for data that is against the security policy

A

SQL Injection

183
Q

an area of memory used to hold temporary data. It grows and shrinks throughout the duration of a program’s runtime.

A

Stack

184
Q

occurs when a buffer has been overrun in the stack space. When this happens, the return address is overwritten, allowing for arbitrary code to be executed.

A

Stack Overflow

185
Q

Hides modifications to files or boot records and itself

A

Stealth virus

186
Q

LIBC function call is more commonly misimplemented because it copies data from one buffer to another without any size limitation

A

strcpy

187
Q

Social engineering best attack method to beat

A

Strong Passwords

188
Q

Database systems commands used to create, access, and modify data

A

SQL - Structured Query Language

189
Q

Develop detailed design specs, Review support documentation, Examine security controls

A

System Design Specifications

190
Q

Contaminates BIOS command other system files. It is often a memory resident virus

A

System infector

191
Q

project management process with following phases: design and development, production, distribution, operation, maintenance, retirement, and disposal

A

System Life Cycle

192
Q

include all compiled languages

A

Third-Generation Languages (3GL)

193
Q

Reduce the number of security-related design and coding flaws, reduce severity of non-security related files, not to reduce number of threat vectors

A

Threat Modeling

194
Q

a race condition where the security changes during the object’s access

A

Time of Check/Time of Use

195
Q

(Backdoors) (maintenance hooks) a programming device used in development to circumvent controls.

A

Trapdoors

196
Q

a program with an inappropriate second purpose

A

Trojan horse

197
Q

Pretend to do one thing while performing another

A

Trojans

198
Q

Row or record

A

Tuple

199
Q

a software simulation of a platform that can execute code. It allows code to execute without being tailored to the specific hardware processor.

A

Virtual Machine

200
Q

independent malware that requires user interaction to execute

A

Virus

201
Q

an exposure that has the potential to be exploited. Most are specific software bugs or logic errors.

A

Vulnerability

202
Q

Reinterpretation where verification evaluates the product during development against specification and validation refers to the work product satisfying the real-world requirements and concepts.
Verification=doing the job right Validation:= doing the right job

A

Waterfall including Validation and Verification (V&V)

203
Q

a design methodology which executes in a linear one way fashion

Can be managed if developers are limited going back only one step. If rework may be done at any stage it’s not manageable. Problem: it assumes that a phase or stage ends at a specific time.
System Requirements-> Software Requirements -> Analysis ->
Program Design -> Coding -> Testing -> Operations & Maintenance

A

Waterfall

204
Q

autonomous malware that requires a flaw in a service

A

Worm

205
Q

a family of computer architectures commonly associated with Intel

A

x86

206
Q

meant to describe an exploit that has been released on or before the corresponding vulnerability has been publicly released

A

0day

207
Q

a distributed system’s transaction control that requires updates to complete or rollback

A

2-phase commit

208
Q

a fundamental principle behind object-oriented programming, users of an object only need to know the proper syntax for using an object and the type of data that will be returned as a result

A

Abstraction

209
Q

Separation of duties, security testing, data validation, bounds checking, certification, accreditation, part of release control

A

Acceptance Testing and Implementation

210
Q

unsolicited advertising software

A

Adware

211
Q

Summarize large amounts of data and provide only summary information as a result

A

Aggregate

212
Q

Emphasis on customer needs for new functionality that quickly meets those needs in an iterative fashion.
- Individuals and interactions over processes and tools
- Working software over comprehensive documentation
- Customer collaboration over contract negotiation
- Responding to change over following a plan

A

Agile Software Development

213
Q

a covert storage channel on the file attribute, also File system forks

A

Alternate Data Streams

214
Q

a unique identifier and a secret token for authentication, generally have a set of access rights on the API associated with it

A

API Keys

215
Q

Initiation
Development/Acquisition
Implementation/Assessment
Operations and Maintenance
Disposal

A

800-64

216
Q

I Plan and Set Projects to Categorize Information Systems And Assess Engineering

Initiate Project - Security Planning
Categorize Information System
Assess Business Impact
Assess Privacy Impact
Ensure Secure System Development

A

800-64 Initiation

217
Q

Outputs - Supporting Documents, Common Understanding of Security Expectations, Initial Schedule of Security Activities or Decisions

A

Initiate Project - Security Planning

218
Q

Outputs - Security Categorization, High-Level Security Requirements, Level of Effort or Rigor Estimates

A

Categorize Information System

219
Q

Outputs - Linkage to Business Drivers, Core System Components, Initial Recovery Time and Point Objectives

A

Assess Business Impact

220
Q

Output - Privacy Impact Assessment

A

Assess Privacy Impact

221
Q

Outputs - Security Training for Development Team, Quality Assurance Plans, Development and Coding Standards

A

Ensure Secure System Development

222
Q

Doctor’s Assistant’S SCissoRs needed for Preparation of Surgery Room which is FAR from Rest Medical Room

Determine Acquisition Strategy
System Concept Review
Performance Specification Review
Financial Approval or Review
Risk Management Review

A

800-64 Initiation Phase Control Gates

223
Q

ARchitect designS
inSpector Documents Silly Codes
interior Designer Selects Artwork
Environment Is not Safe in DC
so Determine Security Domains
and ConTinue building

Assess Risk to System
Select and Document Security Controls
Design Security Architecture
Engineer in Security and Develop Controls
Develop Security Documentation
Conduct Testing

A

800-64 Development/Acquisition

224
Q

Outputs - Risk Assessment

A

Assess Risk to System

225
Q

Outputs - System Security Plan

A

Select and Document Security Controls

226
Q

Outputs - List of Shared Services and Shared Risk, Schematic of Security Integration, Identification of Common Controls

A

Design Security Architecture

227
Q

Outputs - Documented in Place Security Control Specification, List of Variations from Plan, Potential Test Scenarios

A

Engineer in Security and Develop Controls

228
Q

Output - Additional Security Documentation

A

Develop Security Documentation

229
Q

Output - Test Results and Implications

A

Conduct Testing

230
Q

Agent of Dteam Reads Player’s Rating For TomoRrow Rowing Match Race

Architecture or Design Review
Performance Review
Functional Test Review
Risk Management Review

A

800-64 Development/Acquisition Phase Control Gates

231
Q

IS Enterprise or Starship ASSimilated

Integrate Security into Environments or Systems
Access System Security

A

800-64 Implementation/Assessment

232
Q

Outputs - Verified List of Operational Security Controls, Completed System Documentation

A

Integrate Security into Environments or Systems

233
Q

Outputs - Security Assessment Report, Input for POA&M

A

Access System Security

234
Q

Some Tablets are Ready for Roaming like
anDRRoid
Finish Please Soon and Fund Riches so
I can Travel to Delaware or CAlifornia

System Test Readiness Review
Deployment Readiness Review
Final Project Status and Financial Review
IT Deployment or Connection Approval

A

800-64 Implementation/Assessment Phase Control Gates

235
Q

Review OR Pass Configuration to Management Committee in CC e-Mail

Review Operational Readiness
Perform Configuration Management and Control
Conduct Continuous Monitoring

A

800-64 Operations and Maintenance

236
Q

Output - Evaluation of Security Implications due to Changes

A

Review Operational Readiness

237
Q

Outputs - CCB Decisions, Updated Security Documentation, Security Evaluations

A

Perform Configuration Management and Control

238
Q

Outputs - POA&M Review, Documented Results of Continuous Monitoring, Revised Security Authorization Package, Security Reauthorization Decision

A

Conduct Continuous Monitoring

239
Q

Operational Readiness Review for
Change Control Board to conduct
Plan Of Actions and Milestones Review to determine Authorization Decision

Operational Readiness Review
Change Control Board
POA&M Review
Authorization Decision

A

800-64 Operations and Maintenance Phase Control Gates

240
Q

BE Determined Troll
even though you are SMall
Ensure IP for DHS and CS

Build and Execute Disposal or Transition Plan
Sanitize Media
Ensure Information Preservation
Dispose of Hardware and Software
Close System

A

800-64 Disposal

241
Q

Output - Disposal/Transition Plan

A

Build and Execute Disposal or Transition Plan

242
Q

Output - Media Sanitization Records

A

Sanitize Media

243
Q

Outputs - Index of Information, Location, Retention Attributes

A

Ensure Information Preservation

244
Q

Disposition Records for Hardware and Software

A

800-64 Dispose of Hardware and Software

245
Q

Documentation Verifying System Closure

A

Close System

246
Q

Some Clean Rooms for
Clowns, CowBoys are
Sure to be Ready for their Coming

System Closure Review
Change Control Board
Security Review of Closure

A

800-64 Disposal Phase Control Gates

247
Q

System Security Engineering

A

800-160 SSE

248
Q

System Life Cycle Processes

A

Agreement Processes
Organizational Project-Enabling Processes
Technical Management Processes
Technical Processes

249
Q

Agreement Processes

A

Acquisition
Supply

250
Q

Organizational Project-Enabling Processes

A

our prince Leaves Monarchy In Frustration.
Please May Harry Ride Quickly Maybe Kissing Meghan.

LM Life Cycle Model Management
IF Infrastructure Management
PM Portfolio Management
HR Human Resource Management
QM Quality Management
KM Knowledge Management

251
Q

Technical Management Processes

A

Tech Managers Configure and PRIMP for Dairy Queen

CM Configuration Management
PL Project Planning
RM Risk Management
IM Information Management
MS Measurement
PA Project Assessment and Control
DM Decision Management
QA Quality Assurance

252
Q

Technical Processes

A

BAss SNeaks SR ARound
DEan SAys IP INsults
VEry TRicky VAlues OPen MAd DShield

Business or mission analysis (BA)
Stakeholders needs and requirements (SN)
System requirements definition (SR)
Architecture definition (AR)
Design definition (DE)
System Analysis (SA)
Implementation (IP)
Integration (IN)
Verification (VE)
Transition (TR)
Validation (VA)
Operation (OP)
Maintenance (MA)
Disposal (DS)

253
Q

Security Design Principles

A

Security Architecture and Design
Security Capability and Intrinsic Behavior
Life Cycle Security

254
Q

Security Architecture and Design

A

Clear Abstractions
Hierarchical Trust
Least Common Mechanisms
Inverse Modification Threshold
Modularity and Layering
Hierarchical Protection
Partially Ordered Dependencies
Minimized Security Elements
Efficiently Mediated Access
Least Privilege
Minimized Sharing
Predicate Permission
Reduced Complexity
Self-Reliant Trustworthiness
Secure Evolvability
Secure Distributed Composition
Trusted Components
Trusted Communication Channels

255
Q

Security Capability and Intrinsic Behavior

A

Continuous Protection
Secure Failure and Recovery
Secure Metadata Management
Economic Security
Self-Analysis
Performance Security
Accountability and Traceability
Human Factored Security
Secure Defaults
Acceptable Security

256
Q

Life Cycle Security

A

Repeatable and Documented Procedures
Secure System Modification
Procedural Rigor
Sufficient Documentation

257
Q

Identify
Develop viewpoints
Harmonize models, views, and secure function
Relate views to design
Select
Manage

A

ARchitecture definition

258
Q

Prepare
Establish characteristics for system element
Assess alternatives

A

DEsign definition

259
Q

Identify problem that requires analysis
Identify and validate assumptions of analysis
Record results of analysis

A

System Analysis

260
Q

Build or adapt system elements
Develop training materials
Record results and any anomalies
Maintain traceability

A

Implementation

261
Q

Identify training
Demonstrate achievement of security aspects
Commission for operation
Record security aspects of transition and anomalies encountered

A

Transition

262
Q

Define maintenance strategy
Review incident reports to identify maintenance needs
Implement restoration after failure
Identify when maintenance is required
Perform logistics support
Manage maintenance and logistics

A

MAintenance

263
Q

Initiation - Stakeholders Needs, Verification
Development/Acquisition - Architecture, Design, Verification
Implementation/Assessment - System Analysis, Implementation
Operations/Maintenance - Transition, Maintenance

A

800-64 to 800-160 map

264
Q

A1

Injection flaws, such as SQL, NoSQL, OS, and LDAP injection, occur when untrusted data is sent
to an interpreter as part of a command or query. The attacker’s hostile data can trick the
interpreter into executing unintended commands or accessing data without proper authorization.

Controls: Parameterize queries, Validate all inputs

A

Threat Injection

265
Q

A2

Application functions related to authentication and session management are often implemented
incorrectly, allowing attackers to compromise passwords, keys, or session tokens, or to exploit
other implementation flaws to assume other users’ identities temporarily or permanently.

Controls: Implement identity and authentication controls

A

Threat Broken Authentication

266
Q

A3

Many web applications and APIs do not properly protect sensitive data, such as financial,
healthcare, and PII. Attackers may steal or modify such weakly protected data to conduct credit
card fraud, identity theft, or other crimes. Sensitive data may be compromised without extra
protection, such as encryption at rest or in transit, and requires special precautions when
exchanged with the browser.

Controls: Implement appropriate access controls, Protect data, Encryption protection of sensitive data, Error and exception handling

A

Threat Sensitive Data Exposure

267
Q

A4

Many older or poorly configured XML processors evaluate external entity references within XML
documents. External entities can be used to disclose internal files using the file URI handler,
internal file shares, internal port scanning, remote code execution, and denial of service attacks.

Controls: Validate all inputs

A

Threat XML External Entities (XXE)

268
Q

A5

Restrictions on what authenticated users are allowed to do are often not properly enforced.
Attackers can exploit these flaws to access unauthorized functionality and/or data, such as access
other users’ accounts, view sensitive files, modify other users’ data, change access rights, etc.

Controls: Enforce access controls

A

Threat Broken Access Control

269
Q

A6

Security misconfiguration is the most commonly seen issue. This is commonly a result of insecure
default configurations, incomplete or ad hoc configurations, open cloud storage, misconfigured
HTTP headers, and verbose error messages containing sensitive information. Not only must all
operating systems, frameworks, libraries, and applications be securely configured, but they must
be patched and upgraded in a timely fashion.

Controls: Web server configuration hardening

A

Threat Security Misconfiguration

270
Q

A7

XSS flaws occur whenever an application includes untrusted data in a new web page without
proper validation or escaping, or updates an existing web page with user-supplied data using a
browser API that can create HTML or JavaScript. XSS allows attackers to execute scripts in the
victim’s browser which can hijack user sessions, deface web sites, or redirect the user to
malicious sites.

Controls: Encode data

A

Threat Cross Site Scripting (XSS)

271
Q

A8

Insecure deserialization often leads to remote code execution. Even if deserialization flaws do not
result in remote code execution, they can be used to perform attacks, including replay attacks,
injection attacks, and privilege escalation attacks.

Controls: Verify for security early and often

A

Threat Insecure Deserialization

272
Q

A9

Components, such as libraries, frameworks, and other software modules, run with the same
privileges as the application. If a vulnerable component is exploited, such an attack can facilitate
serious data loss or server takeover. Applications and APIs using components with known
vulnerabilities may undermine application defenses and enable various attacks and impacts.

Controls: Take advantage of security frameworks and libraries

A

Threat Using Components with Known Vulnerabilities

273
Q

A10

Insufficient logging and monitoring, coupled with missing or ineffective integration with incident
response, allows attackers to further attack systems, maintain persistence, pivot to more systems,
and tamper, extract, or destroy data. Most breach studies show time to detect a breach is over
200 days, typically detected by external parties rather than internal processes or monitoring.

Controls: Error and exception handling, Implement logging and intrusion detection

A

Threat Insufficient Logging and Monitoring

274
Q

Software configuration management (SCM) should primarily address which of the following questions?

A

What constitutes a software product at any point in time?

275
Q

The security-planning document developed in the development/acquisition phase of a system development life cycle contains what?

A

Configuration management plan
Contingency plan
Incident response plan
Plan of actions and milestones
System interconnection agreements
Security tests and evaluation results
Rules of behavior
Risk assessment
Security awareness and training plan

276
Q

Boundary-value analysis is conducted in which of the following phases of a system development life cycle (SDLC)?

A

Implementation

277
Q

Which of the following application settings used to prevent malware incidents will help stop phishing and spyware delivery?

A

Blocking Web browser pop-up windows
Filtering spam
Filtering website content

278
Q

In a distributed computing environment, replicated servers could have negative impact on what?

A

Scalability

279
Q

Which of the following security principle balances various variables such as cost, benefit, effort, value, time, tools, techniques, gain, loss, risks, and opportunities involved in a successful compromise of security features?

A

Work factor

280
Q

Which of the following is similar to security certification and accreditation?

A

Quality control

281
Q

What is true when dealing with security principles for securing an application environment?

A

Data-hiding techniques should be practiced during program testing and software maintenance.
Design for protection mechanisms should be simple and small in size.
Information security functions should be isolated from non-security functions.

282
Q

Big bang software application testing approach

A

a testing approach where all the individual components or modules of a software application are tested together, often in a single, comprehensive testing phase. Unlike other testing methods that involve incremental integration and testing of components, Big Bang Testing focuses on evaluating the entire system’s functionality as a whole.

This approach is typically employed after the individual units or modules have undergone unit testing. Once these units are ready for integration, they are combined in a “big bang,” and testing is carried out on the complete system.

283
Q

Finite State Machines are used in what phase?

A

Initiation