Lesson 1

Question 1

__________ is the study of how to protect your information assets from destruction, degradation, manipulation and exploitation. But also, how to recover should any of those happen.

Answer 1

Information Assurance (IA)

Question 2

Aspects of information needed protection:

: timely, reliable access to data and information services for authorized users;

Answer 2

Availability

Question 3

Aspects of information needed protection:

: protection against unauthorized modification or destruction of information;

Answer 3

Integrity

Question 4

Aspects of information needed protection:

: assurance that information is not disclosed to unauthorized persons;

Answer 4

Confidentiality

Question 5

Aspects of information needed protection:

: security measures to establish the validity of a transmission, message, or originator.

Answer 5

Authentication

Question 6

Aspects of information needed protection:

: assurance that the sender is provided with proof of a data delivery and recipient is provided with proof of the sender’s identity, so that neither can later deny having processed the data.

Answer 6

Non-repudiation

Question 7

Four major categories of Information Assurance:

Answer 7

• Physical security
• Personnel security
• IT security
• Operational security

Question 8

Proper Practice of Information Assurance:

Answer 8

• enforcing hard-to-guess passwords
• encrypting hard drives
• locking sensitive documents in a safe
• assigning security clearances to staffers
• using SSL for data transfers
• having off-site backup of documents

Question 9

It refers to the protection of hardware, software, and data against physical threats to reduce or prevent disruptions to operations and services and loss of assets.

Answer 9

Physical security

Question 10

It is a variety of ongoing measures taken to reduce the likelihood and severity of accidental and intentional alteration, destruction, misappropriation, misuse, misconfiguration, unauthorized distribution, and unavailability of an organization’s logical and physical assets, as the result of action or inaction by insiders and known outsiders, such as business partners.

Answer 10

Personnel security

Question 11

______ is the inherent technical features and functions that collectively contribute to an IT infrastructure achieving and sustaining confidentiality, integrity, availability, accountability, authenticity, and reliability.”

Answer 11

IT security

Question 12

This involves the implementation of standard operational security procedures that define the nature and frequency of the interaction between users, systems, and system resources, the purpose of which is to:
* achieve and sustain a known secure system state at all times, and
* prevent accidental or intentional theft, release, destruction, alteration, misuse, or sabotage of system resources.

Answer 12

Operational security

Question 13

According to _______, a computing environment is made up of five continuously interacting components: activities, people, data, technology, and networks. IA includes computer and information security.

Answer 13

Raggad’s taxonomy of information security

Question 14

According to Blyth and Kovacich, IA can be thought of as protecting information at three distinct levels:

Answer 14

Physical
Information infrastructure
Perceptual

Question 15

Level: data and data processing activities in physical space

Answer 15

physical

Question 16

Level: information and data manipulation abilities in cyberspace

Answer 16

information infrastructure

Question 17

Level: knowledge and understanding in human decision space.

Answer 17

perceptual

Question 18

The lowest level focus of IA is the _________.

Answer 18

Physical level

Question 19

Computers, physical networks, telecommunications and supporting systems such as power, facilities and environmental controls. Also at this level are the people who manage the systems.

Answer 19

Physical level

Question 20

What level:
Desired Effects: to affect the technical performance and the capability of physical systems, to disrupt the capabilities of the defender.

Attacker’s Operations: physical attack and destruction, including: electromagnetic attack, visual spying, intrusion, scavenging and removal, wiretapping, interference, and eavesdropping.

Defender’s Operations: physical security, OPSEC, TEMPEST. Thus, IA includes aspects of COMPSEC, COMSEC, ITSEC, OPSEC

Answer 20

Physical level

Question 21

The second level focus of IA is the ___________.

Answer 21

Information Infrastructure Level

Question 22

This covers information and data manipulation ability maintained in cyberspace, including: data structures, processes and programs, protocols, data content and databases.

Answer 22

Information Infrastructure Level

Question 23

What level:

Desired Effects: to influence the effectiveness and performance of information functions supporting perception, decision making, and control of physical processes.

Attacker’s Operations: impersonation, piggybacking, spoofing, network attacks, malware, authorization attacks, active misuse, and denial of service attacks.

Defender’s Operations: information security technical measures such as: encryption and key management, intrusion detection, anti-virus software, auditing, redundancy, firewalls, policies and standards.

Answer 23

Information Infrastructure Level

Question 24

The third level focus of IA is the _______, also called social engineering:

Answer 24

Perceptual level

Question 25

This is abstract and concerned with the management of perceptions of the target, particularly those persons making security decisions.

Answer 25

Perceptual level

Question 26

What level:

Desired Effects: to influence decisions and behaviors.

Attacker’s Operations: psychological operations such as: deception, blackmail, bribery and corruption, social engineering, trademark and copyright infringement, defamation, diplomacy, creating distrust.

Defender’s Operations: personnel security including psychological testing, education, and screening such as biometrics, watermarks, keys, passwords.

Answer 26

Perceptual level

Question 27

This is the flip side of Information Assurance. In fact, one can think of the offensive part of IW as ‘information operations,’ and the defensive part as ‘information assurance’.

Answer 27

Information Warfare (IW)

Question 28

This type involves managing an opponent’s perception through deception and psychological operations. In military circles, this is called Truth Projection.

Answer 28

Type I

Question 29

This type involves denying, destroying, degrading, or distorting the opponent’s information flows to disrupt their ability to carry out or co- ordinate operations.

Answer 29

Type II

Question 30

This type gathers intelligence by exploiting the opponent’s use of information systems.

Answer 30

Type III

Question 31

The offensive players in the world of IW come in six types:

Answer 31

Insiders
Hackers
Criminals
Corporations
Governments and agencies
Terrorists

Question 32

It consists of employees, former employees and contractors.

Answer 32

Insiders

Question 33

They are the one who gains unauthorized access to or breaks into information systems for thrills, challenge, power, or profit.

Answer 33

Hackers

Question 34

They target information that may be of value to them: bank accounts, credit card information, intellectual property, etc.

Answer 34

Criminals

Question 35

Those who actively seek intelligence about competitors or steal trade secrets.

Answer 35

Corporations

Question 36

Those who seek the military, diplomatic, and economic secrets of foreign governments, foreign corporations, and adversaries. May also target domestic adversaries.

Answer 36

Governments and agencies

Question 37

They are those who usually politically motivated and may seek to cause maximal damage to information infrastructure as well as endanger lives and property.

Answer 37

Terrorists

Question 38

True or False:
IA is both proactive and reactive involving: protection, detection, capability restoration, and response.

Answer 38

True

Question 39

True or False:
IA environment protection pillars: “ensure the availability, integrity, authenticity, confidentiality, and non-repudiation of information”

Answer 39

True

Question 40

: “timely attack detection and reporting is key to initiating the restoration and response processes.”

Answer 40

Attack detection

Question 41

: “relies on established procedures and mechanisms for prioritizing restoration of essential functions. Capability restoration may rely on backup or redundant links, information system components, or alternative means of information transfer.”

Answer 41

Capability restoration

Question 42

This is the resource being protected, including: physical assets: devices, computers, people; logical assets: information, data (in transmission, storage, or processing), and intellectual property; system assets: any software, hardware, data, administrative, physical, communications, or personnel resource within an information system.

Answer 42

Asset

Question 43

The items being protected by the system (documents, files, directories, databases, transactions, etc.)

Answer 43

Objects

Question 44

The entities (users, processes, etc.) that execute activities and request access to objects.

Answer 44

Subjects

Question 45

Operations, primitive or complex, that can operate on objects and must be controlled.

Answer 45

Actions

Question 46

Critical Aspects:
authorized users are able to access it;

Answer 46

Availability

Question 47

Critical Aspects:
the information is free of error and has the value expected;

Answer 47

Accuracy

Question 48

Critical Aspects:
the information is genuine;

Answer 48

authenticity

Question 49

Critical Aspects:
the information has not been disclosed to unauthorized parties;

Answer 49

confidentiality

Question 50

Critical Aspects:
the information is whole, complete and uncorrupted;

Answer 50

integrity

Question 51

Critical Aspects:
the information has value for the intended purpose;

Answer 51

utility

Question 52

Critical Aspects:
the data is under authorized ownership and control.

Answer 52

possession