Self-Test Vol. 1 Unit 6

Question 1

What three major considerations affect supporting cyber operations?

Answer 1

Policy, Authority, and the Law.

Question 2

What three priorities drive the National Strategy to Secure Cyberspace?

Answer 2

Prevent cyber-attacks against American’s critical infrastructure, reduce national vulnerability to cyber attacks, minimize damage and recovery time from cyber attacks.

Question 3

Can an Air National Guardsman execute a cyber-operation?

Answer 3

ANG can train for Title 10 but can not execute unless assigned to Title 10.

Question 4

What is the primary Air Force command for cyberspace missions?

Answer 4

AFSPC

Question 5

How does OCO intend to project power?

Answer 5

Application of force in and through cyberspace.

Question 6

In DCO, what are reactive defenses?

Answer 6

Measures taken to counter an adversary’s effort to penetrate a network or actions taken to terminate an ongoing intrusion.

Question 7

Most exploitations activities evolve from what?

Answer 7

Phishing

Question 8

On delegation authority, whose cyber tasking orders does the 624 OC relay to all Air Force units?

Answer 8

24 AF/AFCYBER commander

Question 9

What are the four agencies the I-NOSC relays cyber orders to?

Answer 9

MCCC, AFFOR, ACCC, and installation comm units.

Question 10

Does the ATO reflect the integrated air, space, and cyberspace operations plan that support a joint force commander’s campaign?

Answer 10

Yes

Question 11

What is the stimulant that generates increased information superiority?

Answer 11

Network-centric warfare

Question 12

What is key to mitigating unintended or undesirable effects and maximizing cyberspace superiority?

Answer 12

Careful planning

Question 13

How can CO affect an adversary’s informational and physical IO dimensions?

Answer 13

Targeting, either independently or in conjunction with IO, adversary’s culture, organization, or individual psychology.

Question 14

What are the three capabilities of EW?

Answer 14

EA, EP, and ES

Question 15

What was the original term used to describe MISO?

Answer 15

PSYOPS

Question 16

What distinct capability does PA bring to the mission?

Answer 16

Counterpropaganda

Question 17

Can MILDEC intentionally target or mislead the new media, the U.S. public, or Congress?

Answer 17

No

Question 18

What process does OPSEC incorporate to deny adversaries critical information about friendly forces?

Answer 18

SM

Question 19

What is the function of military personnel conducting CMO?

Answer 19

Aiding reestablishment or maintenance of stability within a region or host nation.

Question 20

Can ISR capabilites be used to conduct complex effects assessment to support a combatant or component commander?

Answer 20

Yes

Question 21

What weapon system provides continuous monitoring and defense of AF unclassified and classified networks?

Answer 21

ACO

Question 22

What AF weapon system offers top-level boundary and entry point into the Air Force Information Network (AFIN)?

Answer 22

AFINC weapon system

Question 23

What are the four sub-discipline areas of the AFINC?

Answer 23

Defense-in-depth, proactive defense, network standardization, and situational awareness

Question 24

What is the mission of the CVA/Hunter?

Answer 24

F2T2EA the APT

Question 25

How would you define SCADA?

Answer 25

The centralized network control system, which monitor and control industrial sites or complexes of systems spread out over lard areas.

Question 26

How are SCADA systems typically implemented?

Answer 26

A distributed database referred to as a tag database, which contains data elements called tags or points.

Question 27

Who must evaluate and certify all IT systems, including NSS, with external interfaces?

Answer 27

DISA JICT

Question 28

What TADIL is link 11?

Answer 28

TADIL-A

Question 29

What TADIL is link 4A?

Answer 29

TADIL-C

Question 30

What TADIL is link 16?

Answer 30

TADIL-J

Question 31

What is a weakness in a computer system or network open to exploitation called?

Answer 31

Vulnerability

Question 32

What security professional goal is a result of understanding that all risk cannot be removed?

Answer 32

To eliminate or mitigate as many risks as possible.

Question 33

What passive nature attack is the first step in a replay attack?

Answer 33

MitM attack

Question 34

Due to cost and imperfections, what method should not be used as the sole form of authentication?

Answer 34

Biometrics

Question 35

Although inexpensive in implementation, what systems have the major vulnerability of being prone to brute force attack?

Answer 35

Knowledge-based

Question 36

What actions are included in the scope of end-to-end monitoring?

Answer 36

Monitoring, measuring, performance analysis, and optimizing networks, and networked systems.

Question 37

What is capacity planning?

Answer 37

The long trend analysis of network devices including servers, and should be performed in order to identify future constraints with the results of incorporated into future technical baselines.

Question 38

What is certification?

Answer 38

The comprehensive evaluation and validation of an AF IS to establish the degree to which it complies with assigned IA controls based on standardized procedures.

Question 39

What is accreditation?

Answer 39

The formal declaration by an authorizing official that the IS is approved to operate in a particular security mode using a prescribed set of safeguards at an acceptable level of risk.

Question 40

When does the validation of computer requirements process begin?

Answer 40

When the user identifies a mission need and requests CSO assistance with defining the requirement and developing a technical solution for that need.

Question 41

When do requirements arise?

Answer 41

From a deficiency in an existing operation capability, a need for a new capability or an opportunity to replace or modernize an existing system with improved technology when operationally and economically practical.

Question 42

What are the five phases in the DIACAP process?

Answer 42

Initiate and plan IA C&A, implement and validate assigned IA controls, make a certification determination and accredidation decision, maintain authority to operate and conduct reviews, decommissioning.

Question 43

What is a connection approval?

Answer 43

The formal approval for an IS to connect to the AFIN and the acceptance of risk associated with IS connection by the AF Enterprised AO or delagated individual.

Question 44

What is an ATO?

Answer 44

An approval granted by the lead AO or appointed AO to operate the system at an acceptable level of risk.

Question 45

What is the temporary authorization to test a DOD IS in a specified operational information environment within the timeframe and under the conditions or constraints enumerated in the accreditation decision?

Answer 45

IATT

Question 46

What is a specific fact about friendly intentions, capabilities, and activities vitally needed by adversaries for them to plan and act effectively, so as to guarantee failure or unacceptable consequences for friendly mission accomplishment?

Answer 46

Critical info