ITE 476 Exam 1

0.0(0)

Studied by 0 people

Learn

Practice Test

Spaced Repetition

Match

Flashcards

Card Sorting

1/58

There's no tags or description

Looks like no tags are added yet.

Study Analytics

Name	Mastery	Learn	Test	Matching	Spaced

No study sessions yet.

59 Terms

New cards

Information Assurance

The protection of information, regardless of location, as it pertains to confidentiality, integrity, availability, authentication and non-repudiation

New cards

Confidentiality

The property that information is not made available or disclosed to unauthorized individuals, entities, or processes.

New cards

Integrity

The assurance that the data is trustworthy and accurate. Maintaining and assuring the accuracy and completeness of data over its entire life-cycle.

New cards

Availability

A guarantee of reliable access to information by authorized users.

New cards

Asset

Anything within an environment that should be protected.

New cards

Threat

A person or thing that is likely to lead to interruption, meddling, or destruction of an asset.

New cards

Transitive Liability

You can be responsible for something your server does even if you did not configure it to do it.

New cards

Threat Agent

A person/thing that is likely to lead to interruption, meddling, or destruction of an asset.

New cards

Authentication

The act of verifying a claim of identity. Asserting/identifying that this is who I am by providing credentials.

New cards

Identification

Assertion of who someone is or what something is.

New cards

Authorization

The permissions/rights you have been granted based on least privilege.

New cards

Non-repudiiation

A state of affairs where the purported maker of a statement will not able to successfully challenge the validity of the statement.

New cards

Limiting

Limiting access and vulnerability footprint (only give necessary access, no more).

New cards

Layering

Providing layered access, such as more than 1 piece of security.

New cards

Obscurity

The act of not making anything obvious, or making it look like something it is not.

New cards

Diversity

Reducing mass attacks that rely on predictable behavior by not using identical software.

New cards

Hardware

The collection of physical parts of a computer system to be protected.

New cards

Software

The programs needed to accomplish the input, processing, output, storage, and control of activities in information systems.

New cards

Communications

The act of conveying intended meanings from one entity or group to another through the use of mutually understood signs and semiotic rules.

New cards

Products (Physical Security)

Physical security products, such as protective barriers, locks, UPS, and appliances.

New cards

People (Personal Security)

Personal security, such as training.

New cards

Procedures (Organizational Security)

A document that defines how to implement one or several activities of a process. Defines the sequence of steps.

New cards

Simplicity

Systems that are balanced between security and ease of use.

New cards

Vulnerability

A weakness in an asset or the absence/weakness of a safeguard/countermeasure that could allow an attacker to compromise CIA of an asset.

New cards

Risk

The possibility that something could happen to damage, destroy, or disclose data or other resources.

New cards

Stateful Inspection Firewall

A firewall that tracks the operating state and characteristics of network connections traversing the firewall. It drops all packets which are not associated with an existing connection that is recorded in its state table, preventing unsolicited connections with the protected machine. It does not allow unsolicited SYN-ACK from the 3-way handshake.

New cards

Network

Packet filtering happens on the _______ layer of the TCP/IP stack.

New cards

Transport

Stateful packet inspection is performed in the _______ layer of the TCP/IP stack.

New cards

Integrity

Ensuring that data cannot be modified in an unauthorized or undetected manner is a measure of ________.

New cards

Accuracy

_______ is measured as the closeness of a measured value to a known value.

New cards

Precision

_______ is measured as closeness of multiple measurements to each other.

New cards

Layering

________ is one of the fundamental security principles that uses more than one security measure to gain access to an asset.

New cards

Obscurity

_______ is one of the fundamental security principles that uses a modification to make something look like something it is not.

New cards

Unsolicited SYN/ACK

Stateful inspection firewalls are designed to prevent ________ _________.

New cards

Flags

State is determined by inspecting the _________ section of the TCP segment header.

New cards

business secrets

confidential information

patented processes

Give an example of an asset that needs protection.

New cards

Input Chain

used to control behavior for incoming connections. For example, if a user attempts to SSH into your PC/server, iptables will attempt to match the IP address and port to a rule in the input chain.

New cards

Forward Chain

used for incoming connections that aren't being delivered to the firewall itself but are forwarded through the firewall to another machine. In this case, the firewall is acting as a router between networks. For example, if a user attempts to SSH to a computer that is on the other side of the firewall, the packets are checked against the rules of the Forward chain and either allowed to go forward or dropped.

New cards

Output Chain

is used for outgoing connections. For example, if you try to ping a computer, iptables will check its output chain to see what the rules are regarding this ping before making a decision to allow or deny the connection attempt.

New cards

ip tables -L

List rules

New cards

iptables -L --line-numbers

List rules with rule numbers

New cards

iptables -P INPUT DROP

iptables -P FORWARD DROP

iptables -P OUTPUT DROP

Set default policies

New cards