Untitled Deck

Question 1

What are assets in cybersecurity?

Answer 1

Assets are valuable things in a computer system that need protection, such as data and money.

Example: My data and money with ADCB.

Question 2

What does vulnerability mean?

Answer 2

A vulnerability means a weakness that could be exploited by an attacker, often due to outdated software or bugs in code.

Example: Wattpad being breached allows access to user data.

Question 3

Who is a threat actor?

Answer 3

A threat actor refers to anyone who wants to attack a system, such as a cybercriminal.

Example: A cybercriminal attacking a bank.

Question 4

What is a threat?

Answer 4

A threat is potential harm that an attacker could inflict, such as extortion or data exposure.

Example: ‘I will expose your data if you don’t pay me a ransom.’

Question 5

Define risk in cybersecurity.

Answer 5

Risk refers to the chance that an attacker will successfully exploit a vulnerability and cause harm.

Example: A threat actor guessing a weak password.

Question 6

What does it mean to exploit a vulnerability?

Answer 6

To exploit means to take advantage of a vulnerability.

Example: A threat actor exploiting outdated software.

Question 7

What is a payload in cybersecurity?

Answer 7

A payload refers to the demands made by a hacker after successfully exploiting a vulnerability.

Question 8

What is a countermeasure?

Answer 8

A countermeasure is a security measure taken to prevent attacks on a computer system.

Examples: Firewalls, antivirus software, Multi-factor authentication, encryption.

Question 9

What does the CIA triad stand for?

Answer 9

The CIA triad stands for:
* Confidentiality
* Integrity
* Availability

Question 10

What is non-repudiation?

Answer 10

Non-repudiation ensures that a person cannot deny having sent a message or made a transaction.

Examples: Digital signatures, message authentication.

Question 11

Define access control.

Answer 11

Access control is a security service that prevents unauthorized access to data, systems, and resources.

Question 12

What does the AAA model represent?

Answer 12

The AAA model manages user access and tracks their activities, consisting of:
* Authentication
* Authorization
* Accounting

Question 13

What is the purpose of authentication?

Answer 13

Authentication verifies that a user is who they claim to be.

Example: Logging into an account using a password.

Question 14

What does authorization determine?

Answer 14

Authorization determines what resources and actions a user is allowed to access after authentication.

Question 15

What does accounting track?

Answer 15

Accounting tracks and logs a user’s activities, including resources accessed and session duration.

Question 16

What is cyberspace?

Answer 16

Cyberspace refers to the digital world where computers, networks, and the internet interact.

Question 17

What is the ‘weakest link’ in cybersecurity?

Answer 17

The weakest link refers to the human factor, as even the best security technologies can be compromised by human error.

Question 18

What are the four classes of cybersecurity threats?

Answer 18

The four classes are:
* Disclosure
* Deception
* Disruption
* Usurpation

Question 19

What is threat modeling?

Answer 19

Threat modeling is a process used to identify risks, analyze them, and find ways to reduce or eliminate them.

Question 20

What is a data breach?

Answer 20

A data breach occurs when sensitive data is accessed, stolen, or exposed without authorization.

Question 21

Who are hackers?

Answer 21

Hackers are skilled individuals in computer systems who can be ethical or malicious.

Examples include white hat hackers (ethical) and black hat hackers (malicious).

Question 22

What is defense in depth?

Answer 22

Defense in depth is a security strategy that involves multiple layers of protection.

Examples: Perimeter security, network security, host security, application security, data security.

Question 23

What is an attack surface?

Answer 23

An attack surface is the total number of vulnerabilities and entry points in a system that an attacker can exploit.

Question 24

What is an attack tree?

Answer 24

An attack tree is a hierarchical diagram that analyzes different ways an attacker can exploit a system.

Question 25

What is the goal of prevention in security implementation?

Answer 25

The goal of prevention is to stop attacks before they happen.

Question 26

What is the purpose of detection in security?

Answer 26

Detection aims to identify when an attack is occurring or has occurred.

Question 27

What does response in security implementation involve?

Answer 27

Response involves mitigating the effects of an attack once it is detected.

Question 28

What is recovery in the context of cybersecurity?

Answer 28

Recovery aims to return the system to normal operations after an attack or breach.

Question 29

What are dictionary attacks?

Answer 29

Dictionary attacks are a method of cracking passwords using a list of common words or phrases.

Question 30

What is multi-factor authentication (MFA)?

Answer 30

MFA is a security method that requires more than just a password to access a system.

Question 31

What are the three ways to authenticate in MFA?

Answer 31

The three ways are: * Something You Know * Something You Have * Something You Are

Question 32

What is the principle of least privilege?

Answer 32

The principle of least privilege restricts user access to only what is necessary for their role.

Question 33

What is the principle of separation of privilege?

Answer 33

The principle of separation of privilege requires multiple conditions or individuals to complete a sensitive action.

Question 34

What is the principle of complete mediation?

Answer 34

The principle of complete mediation checks every action or request against security rules.

Question 35

What is access control in cybersecurity?

Answer 35

Access control limits one's access to resources on a system using secure environments called sandboxes.

Question 36

What is the primary function of a reference monitor?

Answer 36

Ensures all operations are safe and secure ## Footnote This check happens each time the user tries to perform an action.

Question 37

What is access control?

Answer 37

Limiting access to resources on a system using sandboxes

Question 38

Define Access Control List (ACL).

Answer 38

A security mechanism that manages and controls access to a system resource

Question 39

What is the Confused Deputy Problem?

Answer 39

Occurs when a trusted process with high permissions is tricked into performing unauthorized actions

Question 40

What is clickjacking?

Answer 40

A cyber attack that tricks a user into clicking on something different from what they think

Question 41

What does Discretionary Access Control (DAC) allow?

Answer 41

The resource owner has full control over who can access it and what actions they can perform

Question 42

In Mandatory Access Control (MAC), who defines access to resources?

Answer 42

A system-enforced policy, not the resource owner

Question 43

What is Role-Based Access Control (RBAC)?

Answer 43

Users are assigned to specific roles based on job functions, inheriting permissions of those roles

Question 44

Define Attribute-Based Access Control (ABAC).

Answer 44

Access decisions based on attributes of users, resources, and the environment

Question 45

What does the Bell-LaPadula Model focus on?

Answer 45

Preventing unauthorized access to sensitive data

Question 46

What is the primary goal of the Biba Model?

Answer 46

Protecting the integrity of data by governing user interactions with data

Question 47

What is the Brewer and Nash Model (Chinese Wall Model) designed to do?

Answer 47

Prevent conflicts of interest in sensitive data handling

Question 48

What does non-repudiation ensure?

Answer 48

That someone cannot deny the validity of something

Question 49

What are the components of accountability?

Answer 49

* Authentication & Authorization * Logging * Monitoring and Auditing

Question 50

What is the purpose of Intrusion Detection Systems (IDSs)?

Answer 50

To monitor network and system activities for unusual behavior

Question 51

What must records maintain for admissibility as evidence?

Answer 51

Integrity and authenticity throughout the entire process

Question 52

What is auditing?

Answer 52

The process of reviewing systems, processes, and controls to ensure compliance and security

Question 53

What is logging?

Answer 53

The process of recording events or activities in a computing environment

Question 54

What is the purpose of monitoring in security?

Answer 54

To track and watch what happens on a network to keep it secure

Question 55

What does SIEM stand for?

Answer 55

Security Information and Event Management

Question 56

What does SIEM do?

Answer 56

* Monitors everything in real-time * Detects security threats automatically * Provides a holistic view

Question 57

What does a lock represent in access control?

Answer 57

The security on a file, system, or resource

Question 58

What is the ORCON policy?

Answer 58

Originator Controlled; restricts sharing of information based on the originator's permissions

Question 59

Define cryptography.

Answer 59

Making secret codes and hiding information

Question 60

What is encryption?

Answer 60

The process of making information unreadable without a key

Question 61

What is the difference between encoding and encryption?

Answer 61

* Encoding: Converts data for compatibility * Encryption: Protects data from unauthorized access

Question 62

What is hashing?

Answer 62

Creates a unique fingerprint of data for security

Question 63

What are the two types of encryption?

Answer 63

* Symmetric * Asymmetric

Question 64

What does the Bell-LaPadula model prevent?

Answer 64

Unauthorized access to sensitive data

Question 65

What type of cipher encrypts data one bit at a time?

Answer 65

Stream cipher

Question 66

What is a digital certificate?

Answer 66

An electronic credential issued by a certificate authority that identifies the owner and includes their public key

Question 67

What is risk in the context of security?

Answer 67

The chance that an attacker will successfully exploit a vulnerability

Question 68

What are the steps for security risk analysis?

Answer 68

* Identify * Define * Calculate * Select

Question 69

What is the difference between qualitative and quantitative risk analysis?

Answer 69

* Qualitative: Subjective judgment * Quantitative: Numeric values

Question 70

What can organizations do with analyzed risks?

Answer 70

* Avoid * Mitigate * Transfer * Accept

Question 71

What is the purpose of risk management frameworks?

Answer 71

Provide recommendations for protecting organizational assets

Question 72

What is the baseline approach to risk identification?

Answer 72

Implementing industry’s best practices for systems

Question 73

What does the detailed risk analysis approach involve?

Answer 73

Structured risk analysis with multiple stages, accounting for specific organizational risks

Question 74

What is the risk assessment process?

Answer 74

* Prepare for assessment * Conduct risk analysis * Communicate results * Maintain assessment