Resilience Flashcards

1
Q

what is software resilience

A

the ability to bounce back or recover from an attack, security event, or reliability failure

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Why don’t all services within a system need equal levels of resilience

A

because not all services in the system are critical (we can afford to have them fail and be reinstated eventually)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

2 important activities that a resilient system does

A
  • immediate recovery from failure to maintain critical services
  • longer term reinstatement of non-critical services
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

4 sources of cybersecurity failures

A

1) organizational ignorance of problem seriousness
2) poor or lax application design of security procedures
3) human operator carelessness
4) poor trade-off between usability and security (i.e. the security procedures are annoying or hard to follow)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

3 protection types against threats

A

authorization

encryption

firewalls

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

what is over-provisioning?

A

provide for resources far beyond peak load to account for bad things that may happen

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

6 steps to avoid cybersecurity failures

A

1) classify assets
2) ID threats
3) ID threat recognition signs
4) threat resistance
5) asset recovery
6) asset reinstatement

How well did you know this?
1
Not at all
2
3
4
5
Perfectly