Lecture 1

Question 1

What are the three fundamental principles of information security?

Answer 1

Confidentiality, Integrity, and Availability (CIA Triad).

Question 2

What is a vulnerability in information security?

Answer 2

A weakness in an information system that could be exploited.

Question 3

Define a security threat.

Answer 3

A potential event or action that could exploit a vulnerability and cause harm.

Question 4

What is the principle of least privilege?

Answer 4

Users and systems should only have the minimal level of access necessary to perform their tasks.

Question 5

What does ‘fail-safe default’ mean in security design?

Answer 5

Systems should default to a secure state when an error occurs.

Question 6

Why is ‘separation of privilege’ important?

Answer 6

It ensures that no single entity has complete control over a system, reducing risk.

Question 7

Name two types of security mechanisms mentioned in the lecture.

Answer 7

Access control and authentication.

Question 8

What is non-repudiation in security?

Answer 8

Ensuring that an entity cannot deny its actions.

Question 9

Give an example of a modern security concern related to IoT.

Answer 9

Smart devices being hacked, such as microphones being turned into surveillance devices.

Question 10

What is GDPR?

Answer 10

The General Data Protection Regulation, which strengthens data protection laws in the EU.