Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

COMPtia Security+-701 Flashcards > Secure Design Principles > Flashcards

Secure Design Principles Flashcards

1
Q

Zero trust

A

Secure design relationship principle. There is no default privilege. Verification is required for access

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Trust but verify

A

Security design relationship principle - dependencies are not trusted until proven trustworthy

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Least privilege

A

Giving a subject or process only the rights and permissions needed to complete assigned tasks

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Survivability

A

Is a system property system ability to prevent, mitigate and recover from cyber events. We have 3 sets of secure design principles:
1. Planning principles
2. Configuration principles
3. Relationship principles

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Open design

A

Secure design planning principle, the security mechanism should not depend upon the secrecy of the design or implementation.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Default deny

A

Secure design planning principle, where base access decisions are made by permission rather than exclusion. By default access denied, and the protection schemes identifies conditions under which access is permitted

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Psychological acceptance

A

Secure design relationship principle, human inference should be designed easy to use , so that users routinely and automatically apply the protection mechanisms correctly

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Least functionality

A

Secured design configuration principle, systems and devices should be configured to provide only essential capabilities, and specifically prohibit or restrict the use of unnecessary functions, ports, protocols, services

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Separation of duties

A

Security design relationship principle, braking a task into segments so that no one subject is in complete control or has complete decision-making power

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Fail secure

A

Security design planning principle, in the event of failure access is denied (secured)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Defense in depth

A

Secure design configuration principle, utilizes multiple layers of diverse controls including endpoint protection such as host-based firewall.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Threat modeling

A

Secure design planning principle, uses threat modeling to anticipate threats. Focus on undesirable consequences. This is potential dangerous and risk minimization

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Keep it simple

A

Security design planning principle, security mechanisms should be as simple as possible. Simplicity means fewer possibilities for error and the assessment process is less complex

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

COMPtia Security+-701 Flashcards (46 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions