Memory Deck Flashcards

Question 1

Q

SLE = AV * EF

Answer

A

Single Loss Expectancy (SLE) - Negative impact for one-time occurrence
Asset Value (AV)
Exposure Factor (EF) - If a flood will damage 40% of your data center, EF is 40%
ARO
Annual Rate of Occurance
ALE = ARO * SLE

🍺 = 😍 (get it?)
Ale makes arousal
Annual Loss Expectancy = Rate of Occurrence - Single Loss Expectancy
===
(Mario saying): “I’ve got something up my sleav-ef”.

Question 2

Q

STRIDE - Microsoft threat modeling tool

Answer

A

S poofing
T ampering
R epudiation - attacker can deny participation
I nformation disclosure
D enial of service
E levation of privilege

Question 3

Q

Due Diligence

Answer

A

: Do Detect
Imagine you have a pool. To protect children and animals from drowning in your pool, you exercise due care by building a fence around the pool. Regularly checking the fence for vulnerabilities and correcting them demonstrates due diligence.

Question 4

Q

ISC2 Ethics: PAPA

Answer

A

Protect, Act, Provide, Advance.

Question 5

Q

Due Care

Due Care:

Answer

A

Do correct.

A vendor engaging in a reasonable and expected manner for the circumstance

Imagine you have a pool. To protect children and animals from drowning in your pool, you exercise due care by building a fence around the pool. Regularly checking the fence for vulnerabilities and correcting them demonstrates due diligence.

Question 6

Q

PTA keeps the children safe!

Answer

A

P hysical - Tangible. Locks, guards, alligator moats, etc.
T echincal/Logical - Automated or electronic systems.
A dministrative - Policy, signage.

Question 7

Q

Security through obscurity:

Answer

A

Data Hiding.

Question 8

Q

RMF:

Answer

A

“Proper Crime Scene Investigators Always Act Modestly” = Prepare, Categorize,
Select, Implement, Assess, Authorize, Maintain.

Question 9

Q

ALE= SLE x ARO:

Answer

A

ArROw SLEd = ALE is beer, so “A Drunk guy shooting
arrows on a sled”.

Question 10

Q

ISO:

Answer

A

“Raging Crackheads Risk Health” = Requirements, Code of practice, Risk
Management, Health (ISO27001, 27002, 27005, 27799).

Question 11

Q

Security Models:

Answer

A

Simple/R = read ; */W = write ; U = UP ; D = DOWN

Question 12

Q

Bell LaPadula:

Answer

A

Confidentiality – Simple N R U || * N W D || Strong * N R/W
U/D.

Question 13

Q

Biba:

Answer

A

Integrity – Simple N R D || * N W U || Invocation N R/W U.

Question 14

Q

Hashing:

Answer

A

HA or MD in the name.

Question 15

Q

Asymmetric:

Answer

A

DEREK-Q = D=Diffie-Hellman E=ElGamal R=RSA E=ECC K=Knapsack Q=Quantum.

Question 16

Q

Symmetric:

Answer

A

23BRAIDS = 2=Twofish 3=3DES B=Blowfish R=RC5 A=AES I=IDEA D=DES S=Skipjack.

Question 17

Q

Fire Extinguisher Classes:

Answer

A

A - Ash -> Combustible
B - Boil -> Liquid
C - Current -> Electrical
D - Dent -> Metal
K - Kitchen -> Oil/Fat

Question 18

Q

CPU Pipelining order:

Answer

A

FDEW = Fetch, Decode, Execute, Write.

Question 19

Q

OSI Model:

Answer

A

Physical, Datalink, Network, Transport, Session, Presentation, Application.
Layer 1-7: Please Do Not Throw Sausage Pizza Away.
Layer 7-1: All People Seem To Need Data Processing.

Helpful mnemonics (for the OSI from top to bottom or 7 to 1):

All People Seem To Need Data Processing
All People Should Try New Dairy Products
All People Studying This Need Drastic Psychotherapy
As Pauly Shore Tweeted, “Nice Dress, Pops!”
Helpful mnemonics (for the OSI from the bottom up or 1 through 7):

Pete doesn’t need to sell pickles anymore
Please Do Not Take Sales People’s Advice
Please Do Not Touch Slimy Purple Algae
Programmers Do Not Throw Stale Pizza Away

Please Do Not Teach Stupid People Acronyms

7 Application; Service Protocols, DNS, FTP, HTTP/s, WAF 6 Presentation; Data formats, GIF, JPG, MOV 5 Session; Auth/crypto, establishes and terminates connections between apps, RPC, PAP, Circuit level fw. 4 Transport; Ports, L2TP, TCP, UDP, SSL, TLS can be done at L3, *Stateful and Packet FW 3 Network, PPTP, chap, IP, RIP, IPSEC, Routers, Brouter, *Stateful and Packet FW 2 Data Link; Host to host links, PPP, Ethernet. Contains, Bridges, Switches, Stateful fw. i Logical Link Control ii MAC 1 Physical; Fibre, Eth Cable, Hub

Question 20

Q

TCP/IP Model:

Answer

A

NITA - Network access, Internet, Transport, Application.

Armadillos Take In New Ants

Question 21

Q

DREAD:

Answer

A

Damage, Reproducibility, Exploitability, Affected users, Discoverability.

Question 22

Q

Evaluation Assurance Level (EAL):
FSMM-SSF:

Answer

A

FSMM-SSF: For Sure My Mother-So Sweet Forever.
Fun Stress Method Medical-Doctors Seem Somewhat Verifiably Foolish.
Functionally, Structurally, Methodically, Methodically Designed, Semi-formally,
Semi-formally Designed, Verified, Formally Verified.

Question 23

Q

Incident Response Forensics:

Answer

A

PDRMR3L =People in Canada Eat Raw Lettuce = Prepare, Detect, Response, Mitigate,
Reporting, Recovery, Remediation, Lesson Learned.

Question 24

Q

IDEAL:

Answer

A

Initiating, Diagnosing, Establishing, Acting, Learning.

Question 25

Q

The Ring Model: Zero KODU

Answer

A

-VM KODU = -1 VM hosts, 0 Kernel, 1 Operating System, 2
Drivers, 3 User.

Question 26

Q

DHCP:

Answer

A

DORA - Discover, Offer, Request, ACK.

Question 27

Q

Digital forensics model:

Answer

A

I Prefer Coffee Everytime Anyone Provides
Donuts = Identification, Preservation, Collection, Examination, Analysis,
Presentation, Decision.

Question 28

Q

Change Management Steps:

Answer

A

RRA/RTID Request, Review, Approve or
Reject, Test, Implement, Document.

Question 29

Q

The 7 steps of a cyber-attack:

Answer

A

RSA ESA O = Reconnaissance, Scanning,
Access and Escalation, Exfiltration, Sustainment, Assault, Obfuscation.

Question 30

Q

SW-CMM:

Answer

A

I Ran Down My Ostrich = Initial, Repeatable, Defined,
Managed, Optimized.

Question 31

Q

BCP Steps:

Answer

A

BCP policy → BIA → Identify preventive controls → Develop
recovery strategies → Develop DRP → DRP training/testing → BCP/DRP
maintenance

Question 32

Q

SDLC1:

Answer

A

IDIOD - Don’t be an IDIOD = Initiation, Design, Implement,
Operations, Disposal

Question 33

Q

SDLC2:

Answer

A

“I Reckon All Dem Dere Taters’ Really Delicious” = Initiation,
Requirements, Architecture, Design, Develop, Testing, Release,
Disposal.

Question 34

Q

ACID:

Answer

A

Atomic, Consistency, Isolation, Durability.

Question 35

Q

Evidence must be:

Answer

A

Authentic,
Complete,
Admissible,
Convincing,
Accurate

Question 36

Q

Type 2 errors

Answer

A

are FAR away.

Question 37

Q

PGP

Answer

A

is a good IDEA.

Question 38

Q

SPF-B

Answer

A

B(urn) Transport Layer—Segments (TCP) (SOME) DATAGRAM (UDP) Network Layer—Packets (PEOPLE) Data Link Layer—Frames (FEAR) Physical Layer— Bits (BIRTHDAYS)

Question 39

Q

IDEAL -

Answer

A

Initiating, Diagnosing, Establishing, Acting, Learning

Question 40

Q

SCMM -

Answer

A

Initial, Repeatable, Defined, Managed, Optimized

I RAN DOWN MY OSTRICH

Question 41

Q

SDLC

Answer

A

PADDTIM - Planning, Analysis, Design, Development, Testing, Implementation, Maintenance

Question 42

Q

BCP:

Answer

A

Inguannas In Paris Really Cant Teach Me = Iniitation, Impact, Preventative, Recovery, Continuity, Test, Manage

Question 43

Q

Blackout
Fault
Brownout
Sag

Inrush
Spike
Surge

Answer

A

Complete loss of power Blackout
Brief/Moementary Loss of Power Fault
Prolonged/Extended drop in voltage Brownout
Brief drop in voltage Sag
Initial power rush
(i.e., after an outage) Inrush
Momentary rush of power Spike
Prolonged/Extended rush of power Surge

Big Fat Bears Sleep in Snoring Slumber
Before Face Book Some Introverts Stayed Silent
Blue Falcons Bring Simply Incredible Soaring Sights
Best Friends Believe Silence Is Simply Silly

Question 44

Q

20,21

Answer

A

FTP, File Transfer Protocol

Question 45

Q

22

Answer

A

ssh, secure shell

Question 46

Q

23

Question 47

Q

25 -

Answer

A

SMTP, Simple Mail Transport Protocol

Question 48

Q

53 -

Question 49

Q

69 -

Answer

A

TFTP, Trivial File Transfer Protocol

Question 50

Q

80 -

Answer

A

HTTP, HyperText Transfer Protocol

Question 51

Q

110 -

Answer

A

POP3, Post Office Protocol (version 3)

Question 52

Q

119

Answer

A

NNTP, Network News Transport Protocol

Question 53

Q

124 -

Answer

A

NTP, Network Time Protocol

Question 54

Q

143

Answer

A

IMAP, Internet Message Access Protocol (version 4)

Question 55

Q

161

Answer

A

SNMP, Simple Network Management Protocol

Question 56

Q

3389

Answer

A

dedicated to Remote Desktop Protocol (RDP)

Question 57

Q

6000- X-Windows

Question 58

Q

How Kerberos Work

Answer

A

You go to the Amusement Park and Buy a Ticket from the Main Entrance Counter to Enter into the Amusement Part to Enjoy The Rides, whichever you have paid for. (Which we call TGT - Ticket Granting Ticket)
He goes to the first rider and says I want to ride MarygoRound and present the Ticket (TGT) to the Rider. But the rider says, show me the ticket that you have to ride this ride.
Rider suggest him to go to the different counter to get the ticket for this Ride (Call it Service Ticket). He goes to that counter and shows his Ticket (TGT) and gets Service Ticket for the MarrygoRound Ride.
After getting the Service Ticket, he shows it to the Rider and he allows him for this Ride. He Enjoys the Ride.
Overview
In Reality How it Happens
- User Sends a Authentication Service Request to Domain Controller
- Domain Controller Sends Back Authentication Service Response along with TGT Key
- User Send an Application Request along with the TGT Key to the Domain Controller
- Domain Controller Sends Back TGT Response along with the Service Ticket to Access the Requested
  Application
- User sends a Request to the Application Server along with the Service Key
- Application Server Validates it and Grant Permission to Access it

Question 59

Q

Patent

Answer

A

= 20 years. Notice there is the word “ten” in Patent. 10 fits better into 20, than it does 70 (Copyright).

Question 60

Q

Take-Grant:

Answer

A

Take Grant to the Colorado Rockies (Take/Grant/Create/Remove). The OSG is also light on this, as you only need to know what it is, and how it compares to the other models.

Question 61

Q

Clark-Wilson -

Answer

A

it’s an integrity model.

Question 62

Q

IPS

IaaS

Answer

A

– Many hosts Infrastructure. Best if your app really requires complex infrastructure (such as 5 databases, 10 firewalls, etc).

Question 63

Q

IPS
PaaS

Answer

A

– One host. Best if: your app can run on 1 host, and you are concerned about: liability, security, time, and money wasted configuring code and infrastructure. PaaS is much more liability-optimal than IaaS. PaaS is the easiest to administer. PaaS your code – so IaC is PaaS.

Question 64

Q

IPS
SaaS

Answer

A

– Service. Service is the most affordable, has least liability to the customer and the cheapest, but it takes time to configure code to work with SaaS and cloud.

Answer 62

A

– BiPlane Joint-Venture agreement

Answer 63

A

– Like Windows OLE (internal, under-the-hood) – under-the-hood ‘SLA’ internal agreement between (C)SP and its brokers.

Answer 64

A

– Completely different beast – Confirms understanding of each-other’s “moo” (talk).

Answer 65

A

– Slave (small) Jobs Worked-on.

Answer 66

A

– Master Services Provided. Masters of Airlines.

Answer 67

A

(Sarbanes Oxley, 2002) – [say in British accent] ENRON really SOX. Its transaction flow really SOX.

Answer 68

A

– banks, lenders, insurance. Think about some fat banker Gramm (or Graham)

Answer 69

A

– Protects minors 13 or younger online. If you are an online pedo, then you cop it

Answer 70

A

– Protects Student data for over 18. Think about Phineas and FerP. They have to grow up eventually and go to college. It would be really unfortunate for Phineas and FerP fans if FerP’s student card is leaked to public!

Answer 71

A

– U.S. Government information security is under prisma. [NIST SP 800-53 is used for FISMA]

Answer 72

A

Credit Card Security – Visa, MasterCard and American Express. What else is a card other than a credit card? – Your PCI card.

Note: PCI DSS is a Standard, not a law.

Answer 73

A

– Copyright. Who hadn’t heard of the DMCA strikes on Youtube?

Answer 74

A

– First major legislation to fight cybercrime. Think: CFAA – F for First.

Answer 75

A

Makes it illegal to invade electronic privacy of an individual.

Answer 76

A

Think of ECPA and CALEA – as a seed and a flower. Yes, calea is a plant, but let’s make CALEA a CAULIPOWER with sour taste. ECPA grows into CALEA flower. Then terrorists come, and the garden of CALEA has to be destroyed. Like the privacy had to be destroyed.

Answer 77

A

Broadened wiretapping authorizations, no thanks to 9/11 in 2001.

Answer 78

A

– restricting export of civilian items that may have military applications, such as EARphones.

Answer 79

A

– restricting export of war items. Think “ITAR is war”. Russia has a century-old pro-war newsagency of ITAR-TASS, and when Russia started its full-scale war, U.S. already had Russia added to ITAR list.

Answer 80

A

– in California only, require Privacy Statements from organizations. Similar mandatory effects to the EU’s GDPR. Remember California=Privacy.

Answer 81

A

– Patents and Trademarks – (U.S. Patent & Trademark Office)

Answer 82

A

– Copyright – (Library of Congress)

Answer 83

A

Steps

Prepare.
Categorize (systems)
Select (controls) [for systems]
Implement (controls) [+documentation]
Assess (controls) [take a step back]
Authorize (controls) [stamp of approval]
Monitor.
Mnemonic device 1

PC SIA AM (PC of SIA in ArMenia)

For SIA to run a rogue PC in Armenia is pretty RISKy

https://img.youtube.com/vi/JKbVmjan3bQ/mqdefault.jpg

Mnemonic device 2

PCS IAAM (PC-s I aam)

[Being non-human is RISKy]

Answer 84

A

DC I DD PP

NSFL but rememberable memorization trick, oh boy will you need DRP and thus BCP after this

Develop (policy)
Conduct BIA (Business Impact Analysis)
Identify (preventative controls)
Develop DRP strategies
Develop IT contingency (plan)
Plan Training
Plan maintenance

Answer 85

A

(Confidentiality model) Like a BELL 🛎️: No Read Up↑, no Write Down↓.
Compiled: NoR↑🛎NoW↓.

Answer 86

A

– (Integrity model) Opposite of Bell-LaPadula: No Read↓, no Write Up↑.
Compiled: NoR↓▽NoW↑.

Answer 87

A

Think Chinese Brew tea – Chinese Wall. Walls off conflict-of-interest.

Answer 88

A

– (Integrity model) Use software to access data. Clerk uses WinStone software to access business data.

Answer 89

A

Fault – short – (Technical) Faults don’t last forever
Blackout – (obviously) long
LO Electricity

Sag – short-term – sag even sounds short – sag sac
Brownout – alike to blackout – long-term
HI Electricity

Spike – Spikes are momentary
Surge – Like insurgencies, they can last long!

Answer 90

A

Magnetic – low security
Proximity – signal can be stolen
RFID – Distance
Microchip / SmartCard – Secure

Answer 91

A

Class A: 10.0.0.0 – 10.255.255.255
Class B: 172.16.0.0 – 172.31.255.255
Class C: 192.168.0.0 – 192.168.255.255

Answer 92

A

Private IP ranges’ subnet masks

Easy trick: class letter defines the number of 255’s from left to right. For example, class B (2) would have 255.255.0.0

Answer 93

A

Rejection” is a “positive” for authN systems.

FRR – Type 1 Error
FAR – Type 2 Error
CER – Intersection between FAR and FRR. Optimal configuration.
Mnemonic device: FRR FAR, CER (meaning Freier’s far, sire)

Answer 94

A

OpenID – Identity → Authentication
OAuth – (stands for) Open Authorization

Answer 95

A

SAML – AuthN and AuthZ, open source, good for ADFS.
SPML – Service Provisioning
XACML – Access control (AuthZ but not AuthN)
SOAP – messaging over network
SCAP – Security Content (Automation Protocol) – Share threat intel

Answer 96

A

SOC 1 – Finance First
SOC 2 – Trust Second/Trust is Two
SOC 3 – SOC 2 lite for public eyes.
SOC Type

Type 1 – One point in time
Type 2 – Two points – timeline

Answer 97

A

– Code [Static testing – is a subtype of white-box testing by definition]

Answer 98

A

– Runtime

Answer 99

A

By format

Real – Real physical Objects
Documentary – Docs
Testimonial – Witness
By reliability

Primary – Originals
Secondary – Certified copies
By quality

Hearsay – “he said she said” – bad

Direct – Very good

Corroborative – Supportive

Conclusive – so good, that we can adjourn court after it.

Evidence Rules

Best – Original evidence is best (not photocopies)
Parol – Written signed agreements can only be amended by written signed agreements (not parol evidence)
Hearsay – Anti-hearsay evidence rule. Evidence-giver must present themselves and not through a third-party.

Answer 100

A

MTTF – Failure
MTTR – Repair. Similar to WRT
MTBF – Between failures. MTBF = MTTF + MTTR

Answer 101

A

RAID operations

Striping – Speed
Mirroring – Redundancy
Remember this array,

0 1
S M
SM – Like “Samsung” or “storage management”,
Samsung old-style logo

RAID 01 – (At drive level) 0 Striping, (At drive-set level) 1 Mirroring

Let’s try one more for fun,

RAID 100 – (At drive level) 1 Mirroring, (At drive-set level) 0 Striping, (At set of drive-sets level) 0 Striping

Answer 102

A

RAID 100
The trick is to read nested RAID from bottom to the top. First digit from the left defines the drive level,

Answer 103

A

– Striping – 2x speed

Answer 104

A

– Mirroring – 2x redundancy
Speed over reliability

Answer 105

A

– Byte striping for speed

Answer 106

A

– Block striping for speed. Block is bigger than byte, therefore RAID 3 > RAID 2.
Error-corrective

Answer 107

A

– Data and parity striped

Answer 108

A

– Same as RAID 5, but configuration is safer with little overhead over RAID 5
Nested

Answer 109

A

Mnemonic 1: Story

Trojan War gives a good analogy:

Recon – Greeks analyze Trojan city, culture, forces to find vulnerabilities, and find that Trojans are superstitious.
Weaponization – Greeks design and build an exploit – a Trojan Horse
Delivery – Greeks discreetly deliver a Trojan Horse to the Trojan gates
Installation – Trojan Horse is interacted with and installed inside Troy.
Exploitation – Under the cover of the night, the Greek warriors disembark Trojan Horse and walk on small Trojan streets to avoid early detection.
Command & Control – Greeks establish command and control over Troy
Maintain – Greeks take measures to maintain control of the city as well as to seize the treasury of the previous king.

Answer 110

A

– Original evidence is best (not photocopies)

Answer 111

A

– Written signed agreements can only be amended by written signed agreements (not parol evidence)

Answer 112

A

– Anti-hearsay evidence rule. Evidence-giver must present themselves and not through a third-party.

Answer 113

A

SoftWare Capability Maturity Model

Somewhat reminiscent of common criteria.

Mnemonic: IRDMO (THIRDMOON [of SW-CMM hell])

Moon

Lvl 1: Initial: No plan
Lvl 2: Repeatable: Basic lifecycle
Lvl 3: Defined: Formal and documented DevOps
Lvl 4: Managed: Quantitative measures (recall quantitative risk analysis)
Lvl 5: Optimized: CI/CD

Answer 114

A

Initiating (everything for DevOps)
Diagnosing (what needs to be fixed/changed)
Establishing (plan)
Acting (on plan → DevOps)
Learning (lessons)

Answer 115

A

– like timelines on Wikipedia, (example).

Answer 116

A

– Project management modelling graph

Answer 117

A

have a security clearance, access approval, and valid need to know for ALL data processed by Dedicated system

Answer 118

A

have a security clearance and access approval for ALL data processed by System high mode system. Also, valid need to know for data PERSONALLY accessed.

Answer 119

A

have a security clearance for ALL data processed by compartmented mode system. Also, access approval and a valid need to know for data PERSONALLY accessed.

Answer 120

A

have a security clearance, access approval, and valid need to know for data PERSONALLY accessed. (Requirements are enforced primarily by hardware or software on the system, not by limiting physical access)

Answer 121

A

– (At drive level) 1 Mirroring, (At drive-set level) 0 Striping

Answer 122

A

Prepare your business
Categorize business needs
Select controls
Implement controls
Asses controls
Authorize controls
Monitor controls

Answer 123

A

Risk Maturity Model
Ad-Hoc - Chaotic Starting Point
Preliminary - Loose attempts at a risk management framework
Defined - a risk management framework is defined
Integrated - a risk framework is integrated into business strategy
Optimized - a risk framework is optimized for the business and is not reactive

Answer 124

A

Most common hashing algorithms
MD5
RIPEMD
SHA
HAVAL

Answer 125

A

Most common Symmetric cryptography algorithms
TwoFish
3DES
Blowfish
Rivest Cipers
AES
IDEA
DES
SkipJack

Answer 126

A

then protect it with Diffie-Hellman!

The Diffie-Hellman algorithm allows you to exchange session keys through insecure channels

Answer 127

A

Most common Asymmetric cryptography algorithms
Diffie-Hellman
El Gamal
RSA
Elliptic Curve
Knapsack

Answer 128

A

Change Management Model.
Request a change
Review the change
Approve the change
Test the change
Schedule the change
Document the change

Answer 129

A

Information Lifecycle.
Create the data
Classify the data so we know how to protect it
Storage such as encryption
Usage such as access control and secure transmission
Archival and when to choose when data should be archived
Destruction in terms of when do we get rid of data and how do we do it securely

Answer 130

A

Incident Response Framework
Detect the attack
Respond to the attack
Mitigate the damage of the attack
Report the attack to senior management
Recover from the attack and return to normal ops
Remediate and find the root analysis
Lessons Learned and how do we keep this from happening again

Answer 131

A

The BCP Process
Scope your BCP
BIA, perform your Business Impact Analysis
Plan your BCP
Approve your BCP

Answer 132

A

Capability Maturity Model
Initial, just starting out your CCM journey
Repeatable, now have repeatable procedures
Defined, now you have defined procedures
Managed, you now have quantifiably managed procedures
Optimized, you are now optimizing your procedures for your business

Answer 133

A

IDEAL Software Framework
Initiate your IDEAL framework
Diagnose the problems you’re trying to solve
Establish a plan to solve your problems
Act on your plan and solve your problems
Learn from the entire process

Answer 134

A

Software Development Life Cycle (SDLC)
Requirements
Design
Implement
Test
Evolve

Answer 135

A

Fire extinguisher categorizations
Class A: “All Purpose” in the way that it means general purpose
Class B: Boiling liquids
Class C: Computers and electronics
Class D: Death metals
Class K: Kitchen and cooking

Answer 136

A

Alternative OSI Model Protocol Data Unit
Layer 7: Data
Layer 6: Data
Layer 5: Data
Layer 4: Segments
Layer 3: Packets
Layer 2: Frames
Layer 1: Bits

Answer 137

A

OSI Model Layer Protocol Data Unit
Layer 5,6,7: Data
Layer 4: Segments
Layer 3: Packets
Layer 2: Frames
Layer 1: Bits

Answer 138

A

Brewer-Nash security model intends to prevent conflict of interest

Answer 139

A

Goguen-Meseguer security model intends to protect integrity

Answer 140

A

Harrison-Ruzzo-Ullman focuses on subject object access rights

Answer 141

A

Clark-Wilson security model intends to protect Integrity

Answer 142

A

The Clark-Wilson security model describes the access control triple of Subject/Program/Object to prevent unauthorized subjects from modifying an object.

Answer 143

A

Graham-Denning security model works on secure object and subject create and deletion

Answer 144

A

Graham Denning has the 8 actions to securely control access. Also every time I eat s’mores I have a least 8 of them.

Answer 145

A

The Sutherland security model is meant to protect integrity by limiting interference of subjects.

Answer 146

A

Scoping security frameworks lets you focus in on just the aspects of the security framework that apply to your situation or organization

Answer 147

A

VAST is a threat modeling framework based on Agile

Answer 148

A

Tailoring is modifying or adjusting the security framework to fit your specific need

Answer 149

A

Evaluation Assurance Levels
EAL 1 & 2 - Simple
EAL 3 & 4 - Methodically tested
EAL 5 & 6 - Semi-formally designed
EAL 7 - Formally designed and tested

Answer 150

A

Six types of Firewalls
Internal Segment: Placed between two internal segments of a network. Operates on layer 3 and up

Static Packet: Looks just at packet headers and applies static rules. Operates on layers 3 and 4

Circuit Level: Just creates a secure connection to another host. Does NOT look at packets. Operates on layer 5.

Application: Sits in front of an application and makes sure only sessions and protocols used for the application are used. Operates on layer 7

NGFW: The most advanced type of firewall that does UTM (unified threat management) including IDS/IPS, deep packet inspection, malware detection, and many other proprietary functions. Operates on Layer 3 and up

Stateful Packet Inspection: Looks at the context of the packets and sessions. Operates on layers 3 and 4

Answer 151

A

eDiscovery Process
Information Governance: Formatting information to be included in the eDiscovery process
Identification: Finding relevant info
Preservation: Keeping info safe from deletion and modification
Collection: Centralizing info
Processing: The first pass and removing irrelevant info
Review: Attorney’s reviewing and removing info that has attorney-client privilege
Analysis: Further review of info
Prodcution: turning over info to opposing counsel
Presentation: showing info in court

Answer 152

A

A Patent is valid for 10+10=20 years

Answer 153

A

BIA Process (This is from the Cybex, I’ve found conflicting info elsewhere so maybe skip this one)
Prioritize
Identify Risk
Likelihood Assesment
Analyze Impact
Resource Prioritization

Answer 154

A

Software Testing
Plan
Objective
Preparation
Meeting
Rework
Follow-up

Answer 155

A

Database management
Cardinality refers to the number of tuples/rows in a table
Degree refers to the number of attributes/columns in a table

Answer 156

A

= MOST Effective Protection Security is Encryption

Answer 157

A

= Risk Assessment is most important

Answer 158

A

= Most important thing is Cost and Security Effectiveness

Answer 159

A

5) Policy is Foundation

Answer 160

A

8) BIA Drive BCP

Answer 161

A

10) Legal MUST be First to be Abide

Answer 162

A

12) Incident Management reduce impact

Answer 163

A

4) Security Strategy you build First

Brainscape's Knowledge GenomeTM

Memory Deck Flashcards

Brainscape's Knowledge Genome^TM