infoasec3

Question 1

Security Principles

Answer 1

Confidentiality
Integrity
Availability

Question 2

Information States

Answer 2

Data at rest or in storage
Data in transit
Data in process

Question 3

Countermeasures

Answer 3

Technologies
Policies and Practice
People

Question 4

Methods use to ensure confidentiality

Answer 4

data encryption, authentication and access control

Question 5

AAA

Answer 5

Authentication, Authorization, and Accounting

Question 6

verifies the identity of a user to prevent unauthorized access

Answer 6

Authentication

Question 7

determines which resources users can access

Answer 7

Authorization

Question 8

it keeps track of what users do including what they access n shi

Answer 8

Accounting

Question 9

the appopriate use of data

Answer 9

privacy

Question 10

it is the accuracy, consistency, and trustworthiness of data

Answer 10

integrity

Question 11

CIA TRIAD

Answer 11

CONFFIDENTIALITY
INTEGRITY
AVAILABILITY

Question 12

it is the principle used to describe the need to maintain availability of information systems and services at all times.

Answer 12

Data availability

Question 13

a type of storage devices that retains the data when user or process is using it

Answer 13

data at rest

Question 14

it is a storage connected to a computer. ex hard drive or usb flashdrive

Answer 14

Direct-attached storage

Question 15

it uses multiple hard drives in an array

Answer 15

Redundant array of independent disks

Question 16

it is a storage device connected to a network

Answer 16

Network attached storage

Question 17

it is an network based storage system

Answer 17

Storage area network

Question 18

it is sending info from one device to another

Answer 18

data transmission

Question 19

uses removable media to physically move data from one computer to another

Answer 19

sneaker net

Question 20

uses cables to transmit data

Answer 20

wired networks

Question 21

uses the airwaves to transmit data

Answer 21

wireless networks

Question 22

this refers to data during initial input

Answer 22

data in process

Question 23

this includes programs and services that protect operating systems, databases and other services

Answer 23

software safeguards

Question 24

appliances that are installed iwthin the network faculties

Answer 24

hardware based technology

Question 25

requires a set of checks before allowing a device to connect to a network

Answer 25

Network access control

Question 26

allows user to gain access to app software and databases

Answer 26

Software as a servicep

Question 27

provides virstualized computing resources

Answer 27

Infastructure as a service

Question 28

it run inside a virtual environment

Answer 28

virtual security appliances

Question 29

a set of security objectives for a company

Answer 29

security policy

Question 30

it helps an it staff maintain consistency

Answer 30

standards

Question 31

list of suggestions

Answer 31

guidelines

Question 32

documents longer and more detailed

Answer 32

procedure

Question 33

ISO

Answer 33

International Organization for Standardization

Question 34

info secutiy standard published in 2005 and revised in 2013

Answer 34

ISO/IEC 27000