IA/ Cyber Security Flashcards
Define IA
information operations that protect and defend information systems
Define Cert
the evaluation of a technical and non- technical security features of an information system
Define Accreditation
is the official management decision to operate an information system in a specified environment
Define DAA
the official who assumes formal responsibility for operating a system
Define System Security plan
system security plan is the formal document prepared by the information system owner
ATO
authority to operate
IATO
interim authourity to operate
Risk management
allows IT managers to balance the cost of protective measures while achieving mission capability
Five attributes of IA
confidentiality, authentication, availability, non-repudiation, integrity
Catagories of computer incidents:
malicious logic, user level intrusion, root level intrusion
IAVA
information assurance vulnerability alert
IAVB
information assurance vulnerability bulletin
IAVT
information assurance vulnerability technical advisory
MALICIOUS CODE
ANY CODE THAT IS PART OF A SOFTWARE SYSTEM THAT IS INTENDED TO CAUSE SECURITY BREACHES OR DAMAGE TO A SYSTEM
ZOMBIE
A COMPUTER THAT HAS BEEN COMPROMISED AND USED TO PERFORM MALICIOUS TASKS UNDER REMOTE DIRECTION