Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

SSE > Introduction > Flashcards

Introduction Flashcards

1
Q

Asset

A

An asset is any tangible or intangible thing or characteristic that has
value to an organization

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Threat

A

A threat is a potential cause of an unwanted incident, which may result in harm to a system or organization

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Adversary

A

An adversary is any person or a thing that acts (or has the power to act) to cause, carry, transmit, or support a threat

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Safety vs. Security

A

Security is concerned with the risks originating from the environment and potentially impacting the system, whereas safety deals with the risks arising from the system and potentially impacting the environment

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Attack vector

A

An attack vector is a path or means by which an attacker can gain access to a computer or network server in order to deliver a malicious outcome

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Vulnerability

A

A vulnerability is a weakness of an asset (or control) that can be exploited

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Software Vulnerability

A

A bug with security consequences

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Exploit

A

An exploit is a method that identifies and takes advantage of a vulnerability in an asset

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Attack

A

An attack is an attempt to destroy, expose, alter, disable, steal or gain
unauthorized access to or make unauthorized use of an asset

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

CIA Triad

A

Confidentiality, Integrity, Availability

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Confidentiality

A

Confidentiality is the property that information is not made available or disclosed to unauthorized individuals, entities, or processes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Integrity

A

Integrity is the property of safeguarding the accuracy and completeness of assets

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Availability

A

Availability is the property of being accessible and usable upon demand by an authorized entity

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Countermeasure

A

A countermeasure (or control / safeguard) is used to minimize or eliminate the probability of a threat exploiting a vulnerability in an asset

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Risk Mitigation

A

Risk mitigation is the process of taking actions to eliminate or reduce the probability of compromising the confidentiality, integrity, and availability of valued information assets to acceptable levels

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Acess Control (AAA Principle)

A

Authentication, Authorization, Accountability

17
Q

Authentication

A

Authentication is the provision of assurance that a claimed
characteristic of an entity is correct

18
Q

Authorization

A

Authorization is a right or permission that is granted to a system entity
to access a system resource

19
Q

Accountability

A

Non-Repudiation/Accountability is the ability to prove the occurrence of a claimed event or action and its originating entities

SSE (9 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2025 Bold Learning Solutions. Terms and Conditions