CompTIA Advanced Security Practitioner (CASP) CAS-003, CH3: Key Terms (Reverse Definitions)

CompTIA Advanced Security Practitioner (CASP) CAS-003, CH3: Key Terms (Reverse Definitions) Ans: informative security policy A list of permissions attached to an object, including files, folders, servers, routers, and so on. Such rule sets can be implemented on firewalls, switches, and other infrastructure devices to control access. Ans: access control list (ACL) A security control that is implemented to administer an organization's assets and personnel and includes security policies, procedures, standards, and guidelines that are established by management. Ans: administrative control Ans: advisory security policy Ans: annualized loss expectancy (ALE) Ans: annualized rate of occurrence (ARO) Any object that is of value to an organization, including personnel, facilities, devices, and so on. Ans: asset Ans: asset value (AV) A value that describes what percentage of the time a resource or data is available. The tenet of the CIA triad that ensures that data is accessible when and where it is needed. Ans: availability An information security governance component that acts as a reference point that is defined and captured to be used as a future reference. Both security and performance baselines are used. Ans: baseline A plan that considers all aspects that are affected by a disaster, including functions, systems, personnel, and facilities, and lists and prioritizes the services that are needed, particularly the telecommunications and IT functions. Ans: business continuity plan (BCP) Ans: checksum Ans: clandestine A security control that substitutes for a primary access control and mainly acts as a mitigation to risks. Ans: compensative control The tenet of the CIA triad which ensures that data is protected from unauthorized disclosure. Ans: confidentiality A business continuity document that considers all aspects that are affected by a disaster, including functions, systems, personnel, and facilities and that lists and prioritizes the services that are needed, particularly the telecommunications and IT functions. Ans: continuity of operations plan (COOP) A security control the reduces the effect of an attack or another undesirable event. Ans: corrective control Ans: countermeasure Ans: covert A plan that documents standard procedures for internal and external communications in the event of a disruption using a crisis communications plan. It also provides various formats for communications appropriate to the incident. Ans: crisis communications plan A set of policies and procedures that serve to protect and recover assets and mitigate risks and vulnerabilities. Ans: critical infrastructure protection (CIP) plan A plan that establishes procedures to address cyber attacks against an organization's information system(s). Ans: cyber incident response plan A security control that detects an attack while is is occurring to alert appropriate personnel. Ans: detective control A security control that deters potential attacks. Ans: deterrent control A method of providing sender authentication and message integrity. The messages acts as an input to a hash function, and the sender's private key encrypts the hash value. The receiver can perform a hash computation on the received message to determine the validity of the message. Ans: digital signature A security control that specifies an acceptable practice in an organization. Ans: directive control An information system focused plan deigned to restore operability of the target system, application, or computer facility infrastructure at an alternate site after an emergency. Ans: disaster recovery plan (DRP) Ans: encryption Ans: exposure factor (EF) Ans: external actor Ans: guideline A person who uses the same tools and techniques as a hacker but does so to disrupt services and bring attention to a political or social cause. Ans: hactivist A one-way function that reduces a message to a hash value. If the sender's has value is compared to the receiver's hash value, message integrity is determined. If the resultant hash values are different, the message has been altered in some way, provided that both other sender and receiver used the same hash function. Ans: hash A leased facility that contains all the resources needed for full operation. Ans: hot site A plan that provides established procedures for the assessment and recovery of a system following a system disruption. Ans: information system contingency plan (ISCP) Ans: informative security policy Ans: inherent risk A characteristic which assures that data has not changed in any way. The tenet of the CIA triad which ensures that data is accurate and reliable. Ans: intergrity Ans: internal actor Ans: issue-specific security policy Ans: likelihood Ans: load balancing Ans: logical control Ans: magnitude Ans: management control Ans: maximum period time of disruption (MPTD) Ans: mean time to repair (MTTR) Ans: maximum tolerable downtime (MTD) Ans: mean time between failures (MTBF) Ans: motivation Ans: occupant emergency plan Ans: organizational security policy Ans: overt Ans: physical control Ans: policy Ans: preventive control Ans: procedure Ans: qualitative risk analysis Ans: quantitative risk analysis Ans: recovery control Ans: recovery point objective (RPO) Ans: recovery time objective (RTO) Ans: redundant array of independent disks (RAID) Ans: regulatory security policy Ans: residual risk Ans: risk Ans: risk acceptance Ans: risk avoidance Ans: risk management Ans: risk mitigation Ans: risk transference Ans: security requirements traceability matrix (SRTM) Ans: single loss expectancy (SLE) Ans: stakeholder Ans: standard Ans: steganography Ans: system-specific security policy Ans: technical control Ans: threat Ans: threat agent Ans: vulnerability Ans: work recovery time (W