Domain 2 - Chapter 1 - Protecting Security of Assets Flashcards
What is PII?
Personally Identifiable Information
Any information that can identify an individual.
What is PHI?
Protected Health Information
Any health-related information that can be related to a specific person.
What is proprietary data?
Any data that helps an organization maintain a competitive edge.
How do you protect data at rest?
Symmetric encryption
How do you protect data in transit?
Combination of symmetric and asymmetric encryption
How do you protect data in use?
Flushing memory buffers
What is data maintenance?
Ongoing efforts to organize and care for data throughout its lifetime.
What is DLP?
Data loss prevention
Systems that attempt to detect and block data exfiltration attempts.
What is a network DLP and where is it placed?
A network DLP scans all outgoing data looking for specific data.
Placed on the edge of the network
What is an endpoint-based DLP?
Used to scan files store on a system and external devices (printers…).
What is a process of preparing media for reuse and ensuring that the cleared data cannot be recovered using traditional recover tools?
Clearing
Overwriting
What is purging?
Erasing data that can’t be recovered using any known methods.
What is a DRM license?
A license that grants access to a product and defines terms of use.
What is persistent online authentication?
(e.g. adobe cloud subscription)
What is a CASB?
Cloud access security broker
software placed logically between users and cloud-based resources. Monitors all activity and enforces administrator-define security policies.
