General knowledge

Question 1

What is computer security?

Answer 1

The protection afforded to an automated information system to preserve the integrity, availability, and confidentiality of information system resources.

Question 2

What are the three key objectives of computer security known as?

Answer 2

CIA triad.

Question 3

Define confidentiality from CIA.

Answer 3

Data confidentiality: Assures that private or confidential information is not made available or disclosed to unauthorized individuals

Privacy - Assures that individuals control and influence what information related to them may be collected and stored and by whom and to whom that information may be disclosed.

Question 4

Define Integrity from CIA.

Answer 4

Data integrity - Assures that information and programs are changed only in a specified and authorized manner

System integrity - Assures that a system performs its intended function in an unimpaired manner, free from deliberate or inadvertent unauthorized manipulation of the system.

Question 5

What does availability from CIA assure?

Answer 5

Assures that systems work promptly and service is not denied to authorized users.

Question 6

What is authenticity in computer security?

Answer 6

The property of being genuine and being able to be verified and trusted.

Question 7

Define accountability in the context of computer security.

Answer 7

The ability to trace a security breach to a responsible party through records of system activities.

Question 8

List the tangible assets of a computer system.

Answer 8

• Servers
• Networking equipment
• Storage devices

Question 9

List the intangible assets of a computer system.

Answer 9

• Brand reputation
• Data
• Software and applications
• Encryption keys and certificates

Question 10

What are vulnerabilities in a computer system?

Answer 10

Weaknesses that can be exploited, potentially leading to unauthorized access or damage.

Question 11

What vulnerability can happen to a system in terms of confidentiality?

Answer 11

It can become leaky, allowing unauthorized access to information.

Question 12

What vulnerabilities can happen to a system in terms of integrity?

Answer 12

It can be corrupted, leading to wrong outputs or functions.

Question 13

What vulnerabilities can happen to a system in terms of availability?

Answer 13

It can become unavailable or very slow.

Question 14

What is an Adversary? (Theat agent)

Answer 14

An entity that attacks, or is a threat to, a system

Question 15

What is an attack?

Answer 15

A deliberate attempt to bypass security and cause harm to a system.

Question 16

What is a counter measure?

Answer 16

An action or tool used to reduce or prevent security threats, vulnerabilities, or attacks.

Question 17

What is risk?

Answer 17

The likelihood that a security weakness will be exploited and cause harm.

Question 18

What is security policy?

Answer 18

A set of rules that guide how a system or organization protects its data and resources.

Question 19

What is an asset?

Answer 19

Anything valuable in a system, like data, processing power, hardware, or facilities.

Question 20

What is a threat?

Answer 20

A potential danger that could take advantage of a security weakness and cause harm.

Question 21

What is a Vulnerability?

Answer 21

A flaw or weakness in a system that an attacker could exploit.

Question 22

What is Auditability?

Answer 22

An ability of a system to conduct persistent monitoring of all actions

Question 23

What is trustworthiness?

Answer 23

An ability of a system to verify identity and establish trust in third party

Question 24

What is non-repudiation?

Answer 24

An ability of a system to confirm occurrence/non-occurrence of an action

Question 25

What is privacy?

Answer 25

Ensuring that the system enables individuals to control their personal information