Give us your feedback!
Question:
Bell-La Padula focuses primarily on:
Response:
Confidentialty
Availability
Authentication
Accessibility
Data Integrity
Which of the following are the three components of the fire triangle?
Heat/Fuel/Oxygen
Heat/Combustion/Oxygen
Fire/Combustion/Oxygen
Fire/Fuel/Oxygen
Owner-set permissions are an example of:
Discretionary access control
Clark-Wilson
role-based access control
mandatory access control
A LAN is
a Local Area Network
a Least Access Notification
a Linear Applebaum Network diagram
a Local Authentication Node
a Local Account Name
Which OSI layer includes the LLC and MAC sub-layers?
Session
Network
Transport
Data Link
Physical
Match the following key terms
Reliable and timely access to data and resources
Confidentiality
Necessary level of secrecy, unauthorized disclosure is prevented
Shoulder surfing
Unauthorized viewing of information (screen peeking)
Social Engineering
Tricking someone into giving sensitive information (to gain unauthorized access)
Falsely rejecting an authorized user is:
FRA or Type IV error
FRR or Type I error
FAR or Type II error
CER or Type III error
A WAN is
a Wide Area Network
a Working Authentication Name
the Westinghouse Address Naming convention
a Wide Array Node
one of the Wilson-Adder Need types
More key terms from Chapter 2
Weakness or lack of a countermeasure
Vulnerability
Entity that can exploit a vulnerability
Threat agent
The danger of having a vulnerability exploited
Threat
The probability of a threat being realized
Risk
Presence of a vulnerability which exposes the organization
Exposure
Which classification of fuel type is wood given?
D
C
A
B
Match the following terms and definitions
Intended to discourage a potential attacker
Deterrent
Intended to avoid an incident from happening
Preventive
Fixes component or systems after an incident has occurred
Corrective
Intended to bring the environment back to production levels
Recovery
Identify an incidents activities
Detective
Alternate measures of control
Compensating
Which access control includes asset classification?
Technical
Organizational
Owner
Administrative
Which classification of fuel type is gasoline given?
Match the following control types to their purposes
Reducing Risk
Correcting violations and incidents
Corrective controls also help improve existing preventative and detective controls
Discouraging violations
Providing alternate ways of accomplishing a task
Restoring systems and information
Which of the following is a remote authentication system?
KERBEROS
OpenVPN
SESAME
TACACS
