Information Assurance & Computer Network Defense

Question 1

What is the ability to rapidly collect, process, and disseminate information while denying these capabilities to adversaries?

Answer 1

Information Superiority

Question 2

What are the measures that protect and defend information and information systems by ensuring availability integrity, authentication, confidentiality and non-repudiation?

Answer 2

Information Assurance

Question 3

What consists of actions and operations to defend computer systems and networks from unauthorized activities that degrade mission performance and adversely impact survivability?

Answer 3

Computer Network Defense

Question 4

What focuses on affecting human decision processes to achieve friendly objectives?

Answer 4

Information Operations

Question 5

What enables operations and intelligence collection to gather data from target or adversary automated information systems or networks?

Answer 5

Computer Network Exploitation (CNE)

Question 6

What provides globally interconnected capabilities, processes and personnel for collecting, processing, storing, disseminating and managing information for all DOD war-fighters, policy makers, and support personnel?

Answer 6

Global Information Grid (GIG)

Question 7

What is an organizational, procedural and technological construct for ensuring information superiority and enabling speed of command for the war-fighter?

Answer 7

NETOPS

Question 8

What integrates the three primary functions of network management, information dissemination management (IDM) and IA?

Answer 8

NETOPS

Question 9

What provides visibility of extent and intensity of the activity, traffic, load and throughput potential, as well as detection of significant degradation of service?

Answer 9

Network Management

Question 10

What does network management enable based on priority, system status and capacity?

Answer 10

Dynamic Rerouting

Question 11

What integrates an organized, manned, equipped and trained workforce to guard, secure and secure information and information systems by providing the security services/attributes of availability, authentication, confidentiality, integrity and non-repudiation?

Answer 11

Information Assurance

Question 12

What provides the timely, reliable access to data and services for authorized users?

Answer 12

Availability

Question 13

What is a security measure designed to establish the validity of a transmission, message or originator, or as a means of verifying an individual’s authorization to access specific categories of information?

Answer 13

Authentication

Question 14

What provides the assurance the information is not disclosed to unauthorized entities or processes?

Answer 14

Confidentiality

Question 15

What is the assurance the sender of the data is provided with proof of delivery and the recipient is provided with proof of the sender’s identity, so neither can later deny having processed the data?

Answer 15

Non-Repudiation

Question 16

What is the quality of an information system reflecting the logical correctness and reliability of the operating system?

Answer 16

Integrity

Question 17

Which instruction states all DOD information systems and networks will be certified and accredited IAW with DOD policy and guidance, currently the DOD Information Technology Security Certification and Accreditation Process (DITSCAP)?

Answer 17

DOD Instruction 5200.40

Question 18

Certification and accreditation (C&A) of information will comply with the requirements of what?

Answer 18

Director of Central Intelligence Directive

Question 19

Who is responsible for developing and providing US military policy positions and concepts supporting CND and IA?

Answer 19

Chairmen of the Joint Chiefs of Staff

Question 20

What is the opportunity to make use of an information system (IS) resource?

Answer 20

Access

Question 21

What limits access to information system resources only to authorized users, programs, processes or other systems?

Answer 21

Access Control

Question 22

What is the process of tracing information system (IS) activities to a responsible source known as?

Answer 22

Accountability

Question 23

What is the formal declaration by a DAA that an information system (IS) is approved to operate in a particular security mode at an acceptable level of risk?

Answer 23

Accreditation

Question 24

What is a chronological record of system activities to enable the reconstruction and examination of the sequence of events and/or changes in an event?

Answer 24

Audit Trail

Question 25

What are automated methods of authenticating or verifying an individual based upon a physical or behavioral characteristic?

Answer 25

Biometrics

Question 26

What is the probability that a particular vulnerability will be exploited within an interacting population and adversely impact some members of that population?

Answer 26

Community Risk

Question 27

What are teams composed of personnel with technical expertise and organic equipment that may deploy to assist remote sites in the restoration of computer services?

Answer 27

Computer Emergency Response Team

Question 28

What are operations to disrupt, deny, degrade or destroy information resident in computers and computer networks, or the computers and networks themselves?

Answer 28

Computer Network Attack

Question 29

What kind of plan is maintained for emergency response, backup operations, and post-disaster recovery for an information system, to ensure the availability of critical resources and to facilitate the continuity of operations in an emergency situation?

Answer 29

Contingency Plan

Question 30

What physical and cyber-based systems are essential to the minimum operations of the economy and government?

Answer 30

Critical Infrastructures

Question 31

What is the DOD consolidated worldwide enterprise level telecommunications infrastructure that provides the end-to-end information transfer network for supporting military operations?

Answer 31

Defense Information Systems Network

Question 32

What is a type of incident resulting from any action or series of actions that prevents any part of an information system (IS) from functioning?

Answer 32

Distributed Denial of Service

Question 33

Who is the official with the authority to formally assume responsibility for operating a system at an acceptable level of risk?

Answer 33

Designated Approving Authority

Question 34

What is a collection of computing environments connected by one or more internal networks under the control of a single authority and security policy, including personnel and physical security?

Answer 34

Enclave

Question 35

What is an occurrence, not yet assessed, that may effect the performance of an IS?

Answer 35

Event

Question 36

What is a system designed to defend against unauthorized access to or from a private network?

Answer 36

Firewall

Question 37

What is the possibility that a particular threat will adversely impact an IS by exploiting a particular vulnerability?

Answer 37

Risk

Question 38

What is a weakness in an information system, system security procedures, internal controls or implementation that could be exploited?

Answer 38

Vulnerability

Question 39

What is a formal description and evaluation of vulnerabilities of an information system?

Answer 39

Vulnerability Assessment

Question 40

What is a program recorded in permanent or semi-permanent computer memory?

Answer 40

Firmware

Question 41

What is an information system (IS) assessed occurrence having actual or potentially adverse effects on an IS?

Answer 41

Incident

Question 42

Which INFOCON level is described as a normal readiness of DOD information systems and networks?

Answer 42

Normal

Question 43

What INFOCON level has increased intelligence watches and strengthened security measures of DOD information systems and networks?

Answer 43

Alpha

Question 44

Which INFOCON level has a further increase in CND force readiness above that required for normal readiness?

Answer 44

Bravo

Question 45

Which INFOCON level has a further increase in CND force readiness but less than maximum CND force readiness?

Answer 45

Charlie

Question 46

Which INFOCON level is described as the maximum CND force force readiness?

Answer 46

Delta

Question 47

Who is the individual responsible for the information assurance program of a DOD information system or organization?

Answer 47

Information Assurance Manager

Question 48

Who is the individual responsible to the IAM for ensuring the appropriate operational IA posture is maintained for a DOD information system or organization?

Answer 48

Information Assurance Officer

Question 49

What is the unauthorized act of bypassing the security mechanism of a system?

Answer 49

Intrusion

Question 50

What is hardware, software or firmware capable of performing an unauthorized function on a information system?

Answer 50

Malicious Logic

Question 51

Which type of threats described common hacker tools and techniques used in a non-sophisticated manner?

Answer 51

First Generation

Question 52

Which type of threats describes non state-sponsored computer network attack, espionage or data theft?

Answer 52

Second Generation

Question 53

Which type of threat describe state-sponsored computer network attack or espionage?

Answer 53

Third Generation