CompTIA Security+ Flash cards

Security Controls

Q: What are the three main categories of security controls?

A: Managerial, Operational, Technical.

CIA Triad

• Q: What does the CIA Triad stand for?

• A: Confidentiality, Integrity, Availability.

Non-repudiation

• Q: What ensures that a sender cannot deny having sent a message?

• A: Non-repudiation, using digital signatures.

Authentication

• Q: What is the process of verifying an identity?

• A: Authentication.

Authorization

• Q: What determines what resources a user can access?

• A: Authorization.

Accounting

• Q: What tracks and logs user activity?

• A: Accounting.

Access Control

• Q: What mechanism determines permissions for resources?

• A: Access Control.

AAA

• Q: What does AAA stand for?

• A: Authentication, Authorization, and Accounting.

ACL

• Q: What does ACL stand for, and what is it used for?

• A: Access Control List; used to define permissions for resources.

RBAC

• Q: What does RBAC stand for?

• A: Role-Based Access Control.

IDS

• Q: What does IDS stand for?

• A: Intrusion Detection System.

IPS

• Q: What does IPS stand for?

• A: Intrusion Prevention System.

CIA

• Q: What does CIA stand for in security? Triangle

• A: Confidentiality, Integrity, Availability.

MFA

• Q: What does MFA stand for?

• A: Multi-Factor Authentication.

TLS

• Q: What does TLS stand for?

• A: Transport Layer Security.