Domain 2: Asset Security Flashcards
Labels
defines the information sensitivity of an object
Clearance
Subjects have clearance assigned to then. formal determination of whether a user can be trusted with a specific level of information.
Defines if a subject can have access to an object.
Compartmentalization
giving clearance to a user, but only in a specific area - not to all objects of the same level.
Formal access approval
Documented approval from a data owner for a subject to access cerain objects
Need to Know
Giving access to a subject, only for those objects that they ‘need to know.’
Sensitive information retention
Sensitive information only has a useful life of so long. IT should not be kept longer than necessary
Data owner
Manager responsible for ensuring specific data is protected. Determin sensitivity labels and frequency of data backup.
System owner
Manager responsible for the actual computers which house data.
Custodian
Performs hands-on protections of assets such as data.
Data Controller
Create and Manage sensitive data within an org. HR employees are often data controllers.
Data Processor
manage data on behalf of data controllers. Outsourced payroll company is an example of this.
Data collection limitation
Orgs should collect the minimum amount of sensitive information required.
Data Remanence
Data that persists beyond non-invasive means to delete.
Memory
Series of on/off switches representing 1s or 0s
RAM
Random Access Memory - Means CPU can jump to any physical location in memory, not limited by what’s available. Volatile
Volatile Memory
Loses integrity after power loss
Non-volatile memory
doesn’t lose integrity after power loss.
Real/Primary Memory
Directly accessible by the CPU. Used to hold instructions and data for currently running processes.
Cache Memory
Fastest Memory, required to keep up with CPU.
Register File
Fastest portion of the fastest memory (Cache Memory). Contains multiple registers for storing instructions/data.
ROM
Non-volatile Read Only Memory. Some types of ROM can be written by flashing.
DRAM
Dynamic Random Access Memory - Stores bits in capacitors (electric charge). Leaks charge so must be constantly recharged every few milliseconds. Slower and cheaper than SRAM.
SRAM
Uses small latches called ‘flip flops’ to store information. Does not leak charge. Faster and more expensive than DRAM.
Firmware
Stores programs that do not change often. Such as BIOS or router OS.
Flash Memory
such as USB thumb drive, SSD
PROM
Programmable read-only memory. Can be written only once. Usually in factory.
EPROM
Erasable Programmable Read-only memory. Can be flashed.