Module 2 Flashcards
What is the ISO/IEC standard that outlines aspects of system quality?
ISO 9126-1
List the aspects of system quality according to ISO 9126-1.
- Functionality
- Usability
- Reliability
- Performance
- Security
- Information Assurance
What does Information Assurance (IA) study?
How to protect information assets from destruction, degradation, manipulation, and exploitation
True or False: Information Assurance is only reactive.
False
What is the definition of Availability in basic security issues?
Timely, reliable access to data and information services for authorized users
What does Integrity protect against?
Unauthorized modification or destruction of information
Fill in the blank: _______ ensures that information is not disclosed to unauthorized persons.
Confidentiality
What does Non-repudiation provide assurance about?
That the sender has proof of data delivery and the recipient has proof of the sender’s identity
According to Debra Herrmann, how many security engineering domains does IA span?
Four
List the four security engineering domains related to Information Assurance.
- Physical security
- Personnel security
- IT security
- Operational security
What is Physical security focused on?
Protection of hardware, software, and data against physical threats
Define Personnel security.
Ongoing measures to reduce the likelihood and severity of unauthorized actions by insiders and known outsiders
What is the main focus of IT security?
Technical features and functions that ensure confidentiality, integrity, and availability
What does Operational security involve?
Implementation of standard operational security defining user-system interactions
According to Raggad’s taxonomy, what are the five components of a computing environment?
- Activities
- People
- Data
- Technology
- Networks
