Domain 2: Asset Security

Question 1

What are the government classifications for data?

Answer 1

Top Secret, Secret, and Confidential, and Unclassified

Question 2

What type of information should the ‘top secret’ classification be applied to?

Answer 2

“Top Secret” shall be applied to information, of which the unauthorized disclosure could reasonably be expected to cause exceptionally grave damage to national security.

Question 3

What are the four business classifications for data?

Answer 3

Business classifications: highly sensitive, sensitive, internal, public

Question 4

What is the data owner responsible for?

Answer 4

The data owner (also called information owner) is a manager responsible for ensuring that specific data is protected

Question 5

What is the system owner responsible for?

Answer 5

The system owner is a manager who is responsible for the actual computers that house data

Question 6

What does a data custodian provide?

Answer 6

A data custodian provides hands-on protection of assets, such as data backups and restores

Question 7

What do data controllers do?

Answer 7

Data controllers create and manage sensitive data within an organization. Human resources employees are often data controllers

Question 8

What is PROM?

Answer 8

PROM (Programmable read only memory) – Can only be written once, normally at the factory.

Question 9

What is EPROM?

Answer 9

EPROM (Erasable programmable read only memory) – Can be erased (flashed) and written many times

Question 10

What is EEPROM?

Answer 10

EEPROM (Electrically erasable programmable read only memory) – These are electrically erasable, you can use a flashing program. This is still called read only.

Question 11

What is the difference between deleting, formatting, and overwriting?

Answer 11

Deleting, formatting and overwriting (Soft destruction):
Deleting a file just removes it from the table; everything is still recoverable.
Formatting does the same but it also puts a new file structure over the old one. Still recoverable in most cases.
Overwriting is done by writing 0’s or random characters over the data.
As far as we know there is no tool available that can recover even single pass overwriting (not possible on damaged media).

Question 12

What type of information should the ‘secret’ classification be applied to?

Answer 12

“Secret” shall be applied to information, of which the unauthorized disclosure could reasonably be expected to cause serious damage to national security.

Question 13

What type of information should the ‘confidential’ classification be applied to?

Answer 13

“Confidential” shall be applied to information, of which the unauthorized disclosure could reasonably be expected to cause damage to national security.

Question 14

EPROM (Erasable Programmable Read Only memory) – Can be erased (flashed) and written many times, by shining an ultraviolet light (flash) on a small window on the chip (normally covered by foil).

Answer 14

We are wanting to erase EPROM memory to update to the latest firmware. How would we do that?

Question 15

What types of memory are non-volatile?

Answer 15

ROM (Read Only memory) is nonvolatile (retains memory after power loss).

Question 16

We are implementing some new standards and framework in our organization. We chose to use scoping on one of the standards we are implementing. What does scoping mean?

Answer 16

Scoping is determining which portion of a standard we will deploy in our organization. We take the portions of the standard that we want or that apply to our industry, and determine what is in scope and what is out of scope for us.

Question 17

We are making our procedures on proper use and disposal of Solid-State Drive (SSD). Which type of which drives are they?

Answer 17

A SSD is a combination of flash memory (EEPROM) and DRAM.

Question 18

When using the formal approval process, what is required to access data?

Answer 18

Formal Access Approval: Document from the data owner approving access to the data for the subject. Subject must understand all requirements for accessing the data and the liability involved if compromised, lost or destroyed. Appropriate Security Clearance is required as well as the Formal Access Approval.

Question 19

In the US government data classification scheme, data that, if disclosed, could cause damage to national security is classified as?

Answer 19

Confidential

Question 20

In the US government’s data classification scheme, what would data “if disclosed, could cause serious damage to national security”, be classified as?

Answer 20

Secret

Question 21

Looking at the data classifications classes of the US government: data that, if disclosed, won’t cause any harm to national security, would be classified as?

Answer 21

Unclassified

Question 22

What type of data destruction would we use to ensure there is no data remanence on our PROM?

Answer 22

We can’t overwrite, format or degauss PROM. The only way to ensure destruction is shredding.

Question 23

Which type of Random-Access memory (RAM) could be embedded in the Central Processing Unit (CPU)?

Answer 23

SRAM (Static RAM): Fast and Expensive. Uses latches to store bits (Flip-Flops). Does not need refreshing to keep data, keeps data until power is lost. This can be embedded on the CPU.

Question 24

When a system has been certified, what does that mean?

Answer 24

Certification is when a system has been certified to meet the security requirements of the system owner. Certification considers the system, the security measures taken to protect the system, and the residual risk represented by the system.

Question 25

What is multi-state processing?

Answer 25

Enables a system to operate at more than one classification level simultaneously.