Unit 3

Question 1

What are the 3 pillars of cyber security

Answer 1

1.Integrity
2.Cyber security
3.Confidentiality

Question 2

What does integrity mean in the context of cyber security

Answer 2

-The level of assurance that can be given as the accuracy and trustworthiness of the data
-The completeness of data is maintained
-Making sure that data is not modified in an unauthorised manner

Question 3

What does cyber security mean in the context of cyber security

Answer 3

Cyber security means the protection of computer systems and networks from being attacked

Question 4

What does confidentiality mean in the context of cyber security

Answer 4

Confidentiality means making sure that data is not accessed by unauthorized users

Question 5

What are the types of cyber-security incidents?

Answer 5

-Unauthorized access
-Information disclosure
-Inaccessible data
-Modification of data
-Theft of data
-Destruction of data

Question 6

What is unauthorized access?

Answer 6

Unauthorized access is where someone gains access to a service, server or other system using someone else’s account or other methods

Question 7

What is covered in unauthorized access?

Answer 7

-Hacking
-Escalation of privileges

Question 8

What is hacking in terms of unauthorized access?

Answer 8

-Hacking is where unauthorized access is gained over computer network security systems for illicit purposes.

-Its an attempt to exploit a private network in a computer

Question 9

What is Privilege escalation in terms of unauthorized access?

Answer 9

Privilege escalation is where a bug or design flaw is exploited in an operating system or software application to gain access to resources that users arent supposed to access

Question 10

What is unauthorized access?

Answer 10

Unauthorized access is where someone gains access to a website, program, server,service or other system using someone else’s account or other methods for illicit purposes.

Question 11

What is included in unauthorized access?

Answer 11

-Hacking
-Escalation of privileges

Question 12

What is hacking in terms of Unauthorized access?

Answer 12

Hacking in terms of unauthorized access is where unauthorized access is gained to a computer network security system for illicit purposes. It is an attempt to exploit a private network

Question 13

What is modification of data?

Answer 13

Modification of data is a cyber security incident where attacks capture, modify steal, delete or intercept data for illicit purposes

Question 14

What is information disclosure

Answer 14

Information disclosure is where an application fails to properly protect data from being accessed by unauthorized parties

Question 15

What information can be disclosed?

Answer 15

-Government information
-Sensitive information

Question 16

What is inaccessible data?

Answer 16

Inaccessible data is where authorized users are unable to access information systems, devices or other network resources

Question 17

What are the incidents involved in inaccessible data?

Answer 17

-Denial of service
-Account lockout

Question 18

What is Denial of service?

Answer 18

Denial of service is where the functionality of a device is interrupted, rendering it useless.

Question 19

What is account lockout

Answer 19

Account lockout is where a malicious user carries out password attacks on user accounts and if the number of attempts exceeds the account lock of threshold, then it can result in users being unable to log into their accounts.

Question 20

What is destruction of data?

Answer 20

Destruction of data is where data stored on all electronic forms of memory is destroyed so that it cannot be accessed or read.