IA/ Cyber Security

Question 1

Define IA

Answer 1

information operations that protect and defend information systems

Question 2

Define Cert

Answer 2

the evaluation of a technical and non- technical security features of an information system

Question 3

Define Accreditation

Answer 3

is the official management decision to operate an information system in a specified environment

Question 4

Define DAA

Answer 4

the official who assumes formal responsibility for operating a system

Question 5

Define System Security plan

Answer 5

system security plan is the formal document prepared by the information system owner

Question 6

ATO

Answer 6

authority to operate

Question 7

IATO

Answer 7

interim authourity to operate

Question 8

Risk management

Answer 8

allows IT managers to balance the cost of protective measures while achieving mission capability

Question 9

Five attributes of IA

Answer 9

confidentiality, authentication, availability, non-repudiation, integrity

Question 10

Catagories of computer incidents:

Answer 10

malicious logic, user level intrusion, root level intrusion

Question 11

IAVA

Answer 11

information assurance vulnerability alert

Question 12

IAVB

Answer 12

information assurance vulnerability bulletin

Question 13

IAVT

Answer 13

information assurance vulnerability technical advisory

Question 14

MALICIOUS CODE

Answer 14

ANY CODE THAT IS PART OF A SOFTWARE SYSTEM THAT IS INTENDED TO CAUSE SECURITY BREACHES OR DAMAGE TO A SYSTEM

Question 15

ZOMBIE

Answer 15

A COMPUTER THAT HAS BEEN COMPROMISED AND USED TO PERFORM MALICIOUS TASKS UNDER REMOTE DIRECTION

Question 16

BOT

Answer 16

USED TO SPREAD EMAIL SPAM AND LAUNCH DENIAL-OF-SERVICE ATTACKS. SOFTWARE APPLICATION THAT RUN AUTOMATIC TASKS OVER THE INTERNET

Question 17

BOTNET

Answer 17

COLLECTION OF ZOMBIE WORKSTATIONS RUNNING BOTS (SOFTWARE APPLICATIONS THAT RUN AUTOMATIC TASKS OVER THE INTERNET) TO SPREAD EMAIL SPAM AND LAUNCH DOS

Question 18

ZERO DAY EXPLOIT

Answer 18

THREAT OR ATTACK THAT EXPLOITS A PREVIOUSLY UNKNOWN VULNERABILITY IN A COMPUTER APPLICATION OR OPERATING SYSTEM THAT DEVELEPORS HAVE NOT HAD TIME TO ADDRESS AND PATCH.

Question 19

SPYWARE

Answer 19

SOFTWARE THAT AIDS IN GATHERING INFORMATION ABOUT A PERSON OR ORGANIZATION WITHOUT THEIR KNOWLEDGE. SENDS INFORMATION TO OTHER ENITITES.

Question 20

LOGIC BOMB

Answer 20

A CODE INTENTIONALLY INSERTED INTO A SOFTWARE SYSTEM THAT WILL SET OFF A MALICIOUS FUNCTION WHEN SPECIFIC CONDITIONS ARE MET.

Question 21

KEYLOGGERS

Answer 21

SOFTWARE THAT LOGS EVERY KEYSTROKE AND WRITES IT TO A FILE.

Question 22

PRIVELAGE ESCALATORS

Answer 22

USER WHO GAINS ELEVATED ACCESS TO RESOURCES THAT ARE NORMALLY PROTECTED FROM AN APPLICATION OR USE.

Question 23

DENIAL-OF-SERVICE

Answer 23

AN ATTEMPT TO MAKE A MACHINE OR NETWORK RESOURCE UNAVAILABLE TO ITS INTENDED USERS. PING OF DEATH.

Question 24

DISTRIBUTED-DENIAL-OF-SERVICE

Answer 24

LARGE SCALE DENIAL OF SERVICE

Question 25

EXPLOIT

Answer 25

SOFTWARE THAT TAKES ADVANTAGE OF A BUG, GLITCH, OR VULNERABILITY. CAUSES UNINTENDED BEHAVIOUR.

Question 26

GLOBAL INFORMATION GRID

Answer 26

AN ALL ENCOMPASSING COMMUNICATION PROJECT OF THE UNITED STATES DoD

Question 27

IAM

Answer 27

IN CHARGE OF IA PROGRAM. OVERSEE ALL IAO’S, IAVA’S, SECURITY MEASURES, EVALUATIONS AND ACCREDITATIONS.

ENSURES SECURITY INTRUCTIONS, GUIDANCE AND SOP’S ARE MAINTAINED AND IMPLEMENTED

Question 28

IAO

Answer 28

APPLIES EVERYTHING (IN TO EFFECT) THAT THE IAM OVERSEES.

Question 29

NCDOC (NAVY CYBER DEFENSE OPERATIONS COMMAND)

Answer 29

IN CHARGE OF INCIDENTS, MONITORS NETWORK ACTIVITY FOR MALICIOUS EVENTS.

Question 30

BLUE TEAM

Answer 30

PROTECT FROM THE INSIDE. TEAM COMES TO THE SHIP AND SCANS THE ENTIRE NETWORK LOOKING FOR VULNERABILITIES. ONCE IDENTIFIED THEY INFORM THE COMMAND, AND THE COMMAND IS RESPONSIBLE FOR FIXING THE DISCREPANCIES. CTN’S

Question 31

RED TEAM

Answer 31

ATTEMPTS TO PENETRATE IA VULNERABILITES.

Question 32

INTRUSION DETECTION SYSTEM (IDS)

Answer 32

A DEVICE OR SOFTWARE APPLICATION THAT MONITORS NETWORS OR SYSTEM ACTIVITIES FOR MALICIOUS ACTIVITY OR POLICY VIOLATIONS AND PRODUCES REPORTS TO A MANAGEMENT STATION.
ACTIVE: IDS AUTO-RESPONDS TO THE SUSPICIOUS ACTIVITY BY RESETTING THE CONNECTION OR BY REPROGRAMMING THE FIREWAL TO BLOCK THE TRAFFIC.

Question 33

INTRUSION PREVENTION SYSTEM (IPS)

Answer 33

SOFTWARE THAT PREVENTS SUSPICIOUS ACTIVITY BY RESETTING THE CONNECTION OR BLOCKING NETWORK TRAFFIC FROM THE MALICIOUS SOURCE.

Question 34

HOST-BASED SECURITY SYSTEM (HBSS)

Answer 34

SOFTWARE APPLICATIONS USED WITHIN THE DEPARTMENT OF DEFENSE (DOD) TO MONITOR, DETECT, AND COUNTERATTACK AGAINST THREATS TO DOD COMPUTER NETWORKS AND SYSTEMS.

Question 35

HOST BASED SECURITY SYSTEM (HBSS)

Answer 35

SOFTWARE APPLICATIONS USED WITHIN THE DEPARTMENT OF DEFENSE (DOD) TO MONITOR, DETECT, AND COUNTERATTACK AGAINST THREATS TO DOD COMPUTER NETWORKS AND SYSTEMS.

Question 36

WINDOWS SERVER UPDATE SERVICES (WSUS) ON SERVERS

Answer 36

A PROGRAM THAT ENABLES ADMINISTRATORS TO MANAGE THE DISTRIBUTION OF UPDATES AND HOT FIXES. THESE ARE RELEASED BY SPAWAR.