WGU Fundamentals of Information
Security D430
CIA Triad - Answers -Confidential - allowing only those authorized to access the data
requested
Integrity - keeping data unaltered in an unauthorized manner and reliable
Availability - the ability for those authorized to access data when needed
Parkerian Hexad - Answers -Confidentiality Integrity Availability
Possession - physical deposition of the media on which the data is stored
Authenticity - allows us to talk about the proper attribution as to the owner or creator of
the data in question
Utility - how useful the data is to us
Attack Types - Answers -Interception
Interruption
Modification
Fabrication
Interception - Answers -an attacker has access to data , applications or environment
Interruption - Answers -attacks cause our assets to become unusable or unavailable
Modification - Answers -attacks involve tampering with our asset
Fabrication - Answers -attacks that create false information
Threat - Answers -something that has potential to cause harm
Vulnerability - Answers -weaknesses that can be used to harm us
Something you know - Answers -username , password , PIN
Something you have - Answers -ID badge , swipe card , OTP
Something you are - Answers -fingerprint, Iris Retina scan
Somewhere you are - Answers -geolocation
Something you do - Answers -handwriting , typing , walking
Authentication - Answers -verifying that a person is who they claim to be
, Mutual authentication - Answers -Both parties in a transaction to authenticate each
other
- Has digital certificates
- Prevents man in the middle attacks
- The man in the middle is where the attacker inserts themselves into the traffic flow
- Ex . Both the PC and server authenticate each other before data is sent in either
direction
Risk management process - Answers -1. Identify Asset - identifying and categorizing
assets that we're protecting
2. Identify Threats - identify threats
3. Assess Vulnerabilities - look for impacts
4. Assess Risk - asses the risk overall
5. Mitigate Risk - ensure that a given type of threat is accounted for
Incident response process - Answers -Preparation Detection and Analysis
Identification
Containment
Eradication Recovery
Post - incident activity
Preparation - Answers -the activities that we can perform , in advance of the incident
itself in order to better enable us to handle it .
Detection and Analysis (Identification) - Answers -detect the occurrence of an issue and
decide whether or not it is actually an incident so that we can respond appropriately to it
.
Containment - Answers -involves taking steps to ensure that the situation does not
cause any more damage than it already has , or to at least lessen any ongoing harm
Eradication - Answers -attempt to remove the effects of the issue from our environment
Recovery - Answers -restoring devices or data to pre - incident state ( rebuilding
systems , reloading applications , backup media , etc. )
Post - incident activity - Answers -determine specifically what happened , why it
happened , and what we can do to keep it from happening again . ( postmortem ) .
Authorization - Answers -what the user can access , modify , and delete
Least Privilege - Answers -giving the bare minimum level of access it needs to perform
its job / functionality
Security D430
CIA Triad - Answers -Confidential - allowing only those authorized to access the data
requested
Integrity - keeping data unaltered in an unauthorized manner and reliable
Availability - the ability for those authorized to access data when needed
Parkerian Hexad - Answers -Confidentiality Integrity Availability
Possession - physical deposition of the media on which the data is stored
Authenticity - allows us to talk about the proper attribution as to the owner or creator of
the data in question
Utility - how useful the data is to us
Attack Types - Answers -Interception
Interruption
Modification
Fabrication
Interception - Answers -an attacker has access to data , applications or environment
Interruption - Answers -attacks cause our assets to become unusable or unavailable
Modification - Answers -attacks involve tampering with our asset
Fabrication - Answers -attacks that create false information
Threat - Answers -something that has potential to cause harm
Vulnerability - Answers -weaknesses that can be used to harm us
Something you know - Answers -username , password , PIN
Something you have - Answers -ID badge , swipe card , OTP
Something you are - Answers -fingerprint, Iris Retina scan
Somewhere you are - Answers -geolocation
Something you do - Answers -handwriting , typing , walking
Authentication - Answers -verifying that a person is who they claim to be
, Mutual authentication - Answers -Both parties in a transaction to authenticate each
other
- Has digital certificates
- Prevents man in the middle attacks
- The man in the middle is where the attacker inserts themselves into the traffic flow
- Ex . Both the PC and server authenticate each other before data is sent in either
direction
Risk management process - Answers -1. Identify Asset - identifying and categorizing
assets that we're protecting
2. Identify Threats - identify threats
3. Assess Vulnerabilities - look for impacts
4. Assess Risk - asses the risk overall
5. Mitigate Risk - ensure that a given type of threat is accounted for
Incident response process - Answers -Preparation Detection and Analysis
Identification
Containment
Eradication Recovery
Post - incident activity
Preparation - Answers -the activities that we can perform , in advance of the incident
itself in order to better enable us to handle it .
Detection and Analysis (Identification) - Answers -detect the occurrence of an issue and
decide whether or not it is actually an incident so that we can respond appropriately to it
.
Containment - Answers -involves taking steps to ensure that the situation does not
cause any more damage than it already has , or to at least lessen any ongoing harm
Eradication - Answers -attempt to remove the effects of the issue from our environment
Recovery - Answers -restoring devices or data to pre - incident state ( rebuilding
systems , reloading applications , backup media , etc. )
Post - incident activity - Answers -determine specifically what happened , why it
happened , and what we can do to keep it from happening again . ( postmortem ) .
Authorization - Answers -what the user can access , modify , and delete
Least Privilege - Answers -giving the bare minimum level of access it needs to perform
its job / functionality
