Add to collection(s) Add to saved
  1. No category
Uploaded by qewfa asfasF

quizlet-ch1

advertisement 
Computer Security: Principles and Practice, 4th Edition
Chapter 1 - Computer Systems Overview
Study online at quizlet.com/_4d350q
1.
Active
Replay, masquerade, modification of
messages, and denial of service are
example of ________ attacks.
2.
attack
An assault on system security that derives
from an intelligent act that is a deliberate
attempt to evade security services and
violate the security policy of a system is
a(n) __________.
3.
CIA Triad
Confidentiality, Integrity, and Availability
form what is often referred to as the ________
4.
Computer
Security
_________ is the protection afforded to an
automated information system in order to
attain the applicable objectives of
preserving the integrity, availability, and
confidentiality of information system
resources.
5.
confidentiality
A loss of _________ is the unauthorized
disclosure of information.
6.
countermeasure
A(n) __________ is an action, device, procedure,
or technique that reduces a threat, a
vulnerability, or an attack by eliminating or
preventing it, by minimizing the harm it can
cause, or by discovering and reporting it
so that correct action can be taken.
7.
Data
The assets of a computer system can be
categorized as hardware, software,
firmware, communication lines and
networks, and _________
8.
data integrity
The assurance that data received are
exactly as sent by an authorized entity is
__________.
9.
deception
Masquerade, falsification, and repudiation
are threat actions that cause __________ threat
consequences.
10.
denial of
service
The _________ prevents or inhibits the normal
use or management of communications
facilities
11.
exposure
A threat action in which sensitive data are
directly released to an unauthorized entity
is __________.
12.
F
The "A" in the CIA triad stands for
"authenticity".
13.
F
Assurance is the process of examining a
computer product or system
with respect to certain criteria.
14.
High
A ________ level breach of security could be
expected to have a severe or catastrophic
adverse effect on organizational operations,
organizational assets, or individuals.
15.
masquerade
An example of __________ is an attempt by an
unauthorized user to gain access to a system
by posing as an authorized user.
16.
Passive
Release of message contents and traffic
analysis are two types of _________ attacks.
17.
passive
attack
A(n) _________ is an attempt to learn or make use
of information from the system that does not
affect system resources.
18.
Privacy
________assures that individuals control or
influence what information related to them
may be collected and stored and by whom
and to whom that information may be
disclosed.
19.
Recovery
Security implementation involves four
complementary courses of action: prevention,
detection, response, and____________
20.
security
attack
A __________ is any action that compromises the
security of information owned by an
organization.
21.
System
Integrity
_________assures that a system performs its
intended function in an unimpaired manner,
free from deliberate or inadvertent
unauthorized manipulation of the system.
22.
T
Availability assures that systems work
promptly and service is not denied to
authorized users.
23.
T
Many security administrators view strong
security as an impediment to
efficient and user-friendly operation of an
information system.
24.
T
The more critical a component or service, the
higher the level of availability required.
25.
T
Computer security is essentially a battle of
wits between a perpetrator who tries to find
holes and the administrator who tries to close
them.
26.
T
Data integrity assures that information and
programs are changed only in a specified and
authorized manner.
27.
T
Computer security is protection of the
integrity, availability, and confidentiality of
information system resources.
28.
vulnerability
A flaw or weakness in a system's design, implementation, or operation and management that could be exploited to
violate the system's security policy is a(n) __________.
Related documents
Chapter-1-Test-CS2
Chapter-1-Test-CS2
CS507 - Chapter 1 Testbank – Computer Security4e
CS507 - Chapter 1 Testbank – Computer Security4e
Computer security
Computer security
unauthorized personnel on school property
unauthorized personnel on school property
Business Integrity Program-Confidentiality
Business Integrity Program-Confidentiality
CODE OF RESPONSIBILITY FOR SECURITY AND CONFIDENTIALITY OF DATA
CODE OF RESPONSIBILITY FOR SECURITY AND CONFIDENTIALITY OF DATA
lec1IS
lec1IS
QUEENSBOROUGH COMMUNITY COLLEGE The City University of New York BIWEEKLY ABSENCE REPORT
QUEENSBOROUGH COMMUNITY COLLEGE The City University of New York BIWEEKLY ABSENCE REPORT
Operational Services
Operational Services
Chapter 1 - Introduction to Information Security
Chapter 1 - Introduction to Information Security
MODELS FOR DISCUSSING
MODELS FOR DISCUSSING
Chapter 1 - Security Principles
Chapter 1 - Security Principles
Download
advertisement