ET1 Grenninger Flashcards
IA?
Information Operations that protect and defend data and IS by ensuring their availability, integrity, authentication, confidentiality, and non-repudiation. This includes providing restoration of IS by incorporating protection, detection, and reaction capabilities
ATO?
Authority to Operate
5 Attributes of IA?
Confidentiality Integrity Availability Non-repudiation Authentication
IAVT?
Info Assurance Vulnerability Technical Adivisory
An IAVA addresses severe network vulnerabilities resulting in immediate and potentially severe threats to DOD systems and information. Corrective action is of the highest priority due to the severity of the vulnerability risk.
Service Pack?
A service pack (in short SP) is a collection of updates, fixes and/or enhancements to a software program delivered in the form of a single installable package.
Purpose of Naval Intelligence
Naval intelligence provides evaluated intelligence on an adversary’s capabilities and intentions to support planning and operations at all levels of warfare.
Three Categories of Intelligence?
Strategic
Operational
Tactical
PIR?
Priority Intelligence Requirement
CCIR?
Commander Critical Information Requirement
Three Examples of Intelligence Briefs?
Geopolitics
Security
Intelligence
Define OPSEC
It is a systematic, proven process that identifies, controls and protects sensitive but unclassified information about a mission, operation or activity.
OPSEC 5 Steps for Planning?
ID Critical Info Analyze Threat Analyze Vulnerabilities Assess Risk Apply Countermeasures
Responsibilities of command OPSEC officer?
Administering the program
Advise the CO on OPSEC matters
Conduct OPSEC surveys, education and training
WRA?
Web Risk Assessment:
Red Cross Message?
AMCROSS messages contain information very personal to the intended recipient. Therefore, communications personnel will not discuss the contents of such a message with anyone and will limit the message distribution to the executive officer or an appointed alternate only. IMMEDIATE precedence maybe assigned to AMCROSS messages concerning death or serious illness.
River City?
OPSEC tool that limits communications.
VTC?
VIdeo Teleconferencing
VTC technology is an extension or combination of television, which provides the audio and video communication aspect, and telephony or telecommunications which provides the addressable, bi-directional connectivity.
GINGERBREAD?
Designed to alert all personnel monitoring over communications that a breach of security has been made over the network. The only answer that can be made is to terminate connections.
Intrusion?
The intentional insertion of EM energy into transmission paths in any manner, with the objective of deceiving operators or causing confusion.
Spillage?
Data placed on an information system possessing insufficient security controls to protect the data at the required classification posing a risk to national security (e.g., SCI onto top secret, secret onto unclas, etc).
State how often a CO is required to conduct a CMS inspection.
Unannounced spot checks are conducted at least quarterly. The CO may delegate no more than two of the four quarterly inspections to XO.
SAER?
Security Access Eligibility Report- assists in making an affirmative determination that the person is an acceptable security risk.
RAM?
RAM (Random Antiterrorism Measures), at a minimum, shall consist of the random implementation of higher FPCON measures in consideration of the local terrorist capabilities. Random use of other physical security measures should be used to supplement FPCON measures.
Three Comsec Incidents?
Cryptographic
Personnel
Physical
