Unit 3 Key Words

Question 1

Digital System

Answer 1

Based on discontinuous data/events

Question 2

Confidentiality

Answer 2

Restricting access to authed ppl only

Question 3

Integrity

Answer 3

Assuring accuracy and trustworthiness of data

Question 4

Availability

Answer 4

Assuring data is available when required

Question 5

Cyber Security

Answer 5

Technologies, processes and practices used to protect networks, programs and computers.

Question 6

Escalation of privileges

Answer 6

Obtaining rights users don’t normally have

Question 7

Vertical escalation

Answer 7

Finding flaws in security system or OS to increase level of access

Question 8

Horizontal escalation

Answer 8

Stealing password or gaining access due to program fault

Question 9

Information disclosure

Answer 9

Info passed on without permission

Question 10

Account lockout

Answer 10

Login blocked due to failed attempts

Question 11

Denial of Service

Answer 11

Attack that shuts down a comp/network by flooding it with traffic

Question 12

System attack examples

Answer 12

DoS, botnet, social engineering

Question 13

Physical attack examples

Answer 13

Theft

Question 14

Environmental examples

Answer 14

Floods, fire, earthquakes

Question 15

Cyber-enabled Crime

Answer 15

Fraud, theft and bullying using IT

Question 16

Cyber-dependent Crime

Answer 16

Can only be carried out using a computer, i.e DoS

Question 17

State-sponsored

Answer 17

Countries spying on each other

Question 18

Hacktivist

Answer 18

Politically and socially motivated disruptive hackers

Question 19

Cyber Criminal

Answer 19

Using computers to perform malicious activities, for financial gain generally

Question 20

Insider

Answer 20

Hacker from within the target organisation

Question 21

Script Kiddie

Answer 21

Hacker that has no programming knowledge and uses existing scripts

Question 22

Vulnerability Broker

Answer 22

Finds bugs in systems and sells them

Question 23

Scammers

Answer 23

Deceives people with false offers and information

Question 24

Phishers

Answer 24

Hackers that obtain want sensitive info such as passwords

Question 25

Cyber Terrorists

Answer 25

Hackers that want to cause fear or intimidation in society

Question 26

Mitigate Risks

Answer 26

Testing systems for vulnerabilities

Question 27

Monitor and controls systems

Answer 27

Monitoring assets

Question 28

Penetration Testing

Answer 28

Simulating attacks to find flaws

Question 29

Fuzzing

Answer 29

Inputting huge amounts of random data to find program faults

Question 30

Security Functionality

Answer 30

Identifying flaws in security mechanisms

Question 31

Sandboxing

Answer 31

Isolating untested code

Question 32

IDS

Answer 32

Monitor systems for malicious net activity

Question 33

NIDS

Answer 33

Monitor inbound and outbound net activity for suspicious patterns

Question 34

HIDS

Answer 34

Installed on every net computer, has two-way access to external environment, monitors i/o

Question 35

DIDS

Answer 35

Multiple IDS over a large net, communicating with each other via a central server

Question 36

Anomaly Based

Answer 36

Monitors network activity and classifies whether the activity is expected or not.

Question 37

Signature Based

Answer 37

Monitor net traffic for specific known patterns used by malware

Question 38

Honeypot

Answer 38

Decoy computer/net to detect and deflect attacks

Question 39

IPS

Answer 39

Proactive detection against intruders

Question 40

Physical Security

Answer 40

Limits access to buildings

Question 41

Biometrics

Answer 41

Uses persons physical characteristics to identify them

Question 42

Swipe Cards

Answer 42

Magnetic/RFID cards that can be swiped to authorise people

Question 43

Alarms

Answer 43

Deter people

Question 44

hardware Security

Answer 44

Prevents physical removal of items

Question 45

Safe

Answer 45

Securely store items

Question 46

Cable Locks

Answer 46

Secure items to an immovable object

Question 47

Engraving

Answer 47

Engrave identification on the hardware

Question 48

SmartWater

Answer 48

Liquid that leaves a long-lasting identifier, presence is invisible

Question 49

Firewall

Answer 49

Monitors incoming and outgoing traffic, decides whether to allow or block

Question 50

Anti-malware

Answer 50

Protects a system from malware infiltration

Question 51

Operating system Updates

Answer 51

Remove or corrects vulnerabilities

Question 52

Patch Management

Answer 52

Updating patches for software to fix any vulnerabilities

Question 53

Encryption

Answer 53

Protects the confidential of digital data, scrambling it with a code

Question 54

Asymmetric Encryption

Answer 54

Uses a public key to encrypt and a private key to decrypt

Question 55

Symmetric Encryption

Answer 55

One key shared among recipients for encryption and decryption

Question 56

Cryptography

Answer 56

Protects information on open and closed networks