WGU D430 FUNDAMENTALS OF INFORMATION SECURITY
EXAM OBJECTIVE ASSESSMENT NEWEST 2024 TEST BANK
ACTUAL EXAM 300 QUESTIONS AND CORRECT DETAILED
ANSWERS (VERIFIED ANSWERS) |ALREADY GRADED A+
1.Define the confidentiality in the CIA triad...
.ANSWER...Our ability to protect data from those who are not authorized to view it.
(Hiding atm pin, covering comp screen, keep track of devices)
2.Define integrity in the CIA triad.
...ANSWER...The ability to prevent people from changing your data and the ability to
reverse unwanted changes. (Access control, read and write permissions, info correct)
3.Define the availability in the CIA triad...
.ANSWER...Our data needs to be accessible when we need it.(because of power loss
and such)
4.Define information security.
...ANSWER...The protection of information and information systems from unauthorized
access, use, disclosure, disruption, modification, or destruction in order to provide
confidentiality, integrity, and availability.
5.Define the Parkerian Hexad and its principles.
...ANSWER...The Parkerian Hexad includes confidentiality, integrity, and availability from
the CIA triad. It also includes possession (or control), authenticity, and utility.
6.Authenticity
...ANSWER...Whether the data in question comes from who or where it says it comes
from (i.e. did this person actually send this email?)
7.Confidentiality is affected by what type of attack?
...ANSWER...Interception (eaves dropping)
8.Integrity is affected by what type of attacks?
...ANSWER...Interruption (assets are unusable), modification (tampering with an asset),
fabrication (generating false data)
9.Authenticity is affected by what type of attacks?
...ANSWER...Interruption (assets are unusable), modification (tampering with an asset),
fabrication (generating false data)
10.Utility
...ANSWER...How useful the data is to you (can be a spectrum, not just yes or no)
11.Possession
...ANSWER...Do you physically have the data in question? Used to describe the scope of
a loss
,WGU D430 FUNDAMENTALS OF INFORMATION SECURITY
EXAM OBJECTIVE ASSESSMENT NEWEST 2024 TEST BANK
ACTUAL EXAM 300 QUESTIONS AND CORRECT DETAILED
ANSWERS (VERIFIED ANSWERS) |ALREADY GRADED A+
12.Identify the four types of attacks
...ANSWER...interception, interruption, modification, and fabrication
13.Interception attacks.
..ANSWER...Make your assets unusable or unavailable
14.Interruption attacks.
..ANSWER...cause assets to become unusable or unavailable for our use, on a
temporary or permanent basis
15.Modification attacks.
..ANSWER...Tampering with an asset
16.Fabrication attacks.
..ANSWER...Generating data, process, and communications
17.Define the risk management process(car)
...ANSWER...1. Identify assets
2. Identify threats
3. Assess vulnerabilities
4. Assess risks
5. Mitigate risks
18.Define the incident response process and its stages.(zombie).
..ANSWER...Preparation
Detection and analysis
Containment
Eradication
Recovery
19.Preparation in incident response.
..ANSWER...creating policies and procedures
20.Detection in incident response
...ANSWER...Using tools and humans to decide if an incident is an incident
21.Defense in Depth.
..ANSWER...employing multiple layers of controls to avoid a single point of failure
22.Identify types of controls to mitigate risk.
..ANSWER...physical, logical, administrative
, WGU D430 FUNDAMENTALS OF INFORMATION SECURITY
EXAM OBJECTIVE ASSESSMENT NEWEST 2024 TEST BANK
ACTUAL EXAM 300 QUESTIONS AND CORRECT DETAILED
ANSWERS (VERIFIED ANSWERS) |ALREADY GRADED A+
23.Identify elements of risk management in policies and procedures
....ANSWER...Development of robust policies
Identification of emergent recent
Identify elements of internal weakness
24.Identify the layers of a defense-in-depth strategy.(body)
...ANSWER...External network
Internal network
Host
Application
Data
25.Define identification.
..ANSWER...The claim of who we/networks are
26.Define identity verification..
..ANSWER...Someone claims who they are and you take it one step father and ask for ID
27.Define authentication
...ANSWER...A set of methods used to determine if a claim of identity is true.
28.Compare authentication types.
...ANSWER...Multifactor authentication
Mutual authentication
29.Identify password security best practices
....ANSWER...Upper case
Lower case
Numbers
Symbols
30.Identify the factors involved in a multifactor authentication technique..
..ANSWER...Something you do
Something you have
Where you are
40.Define accountability and its benefits.
..ANSWER...nonrepudiation, deterrence, intrusion detection and prevention, and
admissibility of records
41.Auditing
...ANSWER...Hold users of your system accountable. A methodical examination and
review of an organization's records.
EXAM OBJECTIVE ASSESSMENT NEWEST 2024 TEST BANK
ACTUAL EXAM 300 QUESTIONS AND CORRECT DETAILED
ANSWERS (VERIFIED ANSWERS) |ALREADY GRADED A+
1.Define the confidentiality in the CIA triad...
.ANSWER...Our ability to protect data from those who are not authorized to view it.
(Hiding atm pin, covering comp screen, keep track of devices)
2.Define integrity in the CIA triad.
...ANSWER...The ability to prevent people from changing your data and the ability to
reverse unwanted changes. (Access control, read and write permissions, info correct)
3.Define the availability in the CIA triad...
.ANSWER...Our data needs to be accessible when we need it.(because of power loss
and such)
4.Define information security.
...ANSWER...The protection of information and information systems from unauthorized
access, use, disclosure, disruption, modification, or destruction in order to provide
confidentiality, integrity, and availability.
5.Define the Parkerian Hexad and its principles.
...ANSWER...The Parkerian Hexad includes confidentiality, integrity, and availability from
the CIA triad. It also includes possession (or control), authenticity, and utility.
6.Authenticity
...ANSWER...Whether the data in question comes from who or where it says it comes
from (i.e. did this person actually send this email?)
7.Confidentiality is affected by what type of attack?
...ANSWER...Interception (eaves dropping)
8.Integrity is affected by what type of attacks?
...ANSWER...Interruption (assets are unusable), modification (tampering with an asset),
fabrication (generating false data)
9.Authenticity is affected by what type of attacks?
...ANSWER...Interruption (assets are unusable), modification (tampering with an asset),
fabrication (generating false data)
10.Utility
...ANSWER...How useful the data is to you (can be a spectrum, not just yes or no)
11.Possession
...ANSWER...Do you physically have the data in question? Used to describe the scope of
a loss
,WGU D430 FUNDAMENTALS OF INFORMATION SECURITY
EXAM OBJECTIVE ASSESSMENT NEWEST 2024 TEST BANK
ACTUAL EXAM 300 QUESTIONS AND CORRECT DETAILED
ANSWERS (VERIFIED ANSWERS) |ALREADY GRADED A+
12.Identify the four types of attacks
...ANSWER...interception, interruption, modification, and fabrication
13.Interception attacks.
..ANSWER...Make your assets unusable or unavailable
14.Interruption attacks.
..ANSWER...cause assets to become unusable or unavailable for our use, on a
temporary or permanent basis
15.Modification attacks.
..ANSWER...Tampering with an asset
16.Fabrication attacks.
..ANSWER...Generating data, process, and communications
17.Define the risk management process(car)
...ANSWER...1. Identify assets
2. Identify threats
3. Assess vulnerabilities
4. Assess risks
5. Mitigate risks
18.Define the incident response process and its stages.(zombie).
..ANSWER...Preparation
Detection and analysis
Containment
Eradication
Recovery
19.Preparation in incident response.
..ANSWER...creating policies and procedures
20.Detection in incident response
...ANSWER...Using tools and humans to decide if an incident is an incident
21.Defense in Depth.
..ANSWER...employing multiple layers of controls to avoid a single point of failure
22.Identify types of controls to mitigate risk.
..ANSWER...physical, logical, administrative
, WGU D430 FUNDAMENTALS OF INFORMATION SECURITY
EXAM OBJECTIVE ASSESSMENT NEWEST 2024 TEST BANK
ACTUAL EXAM 300 QUESTIONS AND CORRECT DETAILED
ANSWERS (VERIFIED ANSWERS) |ALREADY GRADED A+
23.Identify elements of risk management in policies and procedures
....ANSWER...Development of robust policies
Identification of emergent recent
Identify elements of internal weakness
24.Identify the layers of a defense-in-depth strategy.(body)
...ANSWER...External network
Internal network
Host
Application
Data
25.Define identification.
..ANSWER...The claim of who we/networks are
26.Define identity verification..
..ANSWER...Someone claims who they are and you take it one step father and ask for ID
27.Define authentication
...ANSWER...A set of methods used to determine if a claim of identity is true.
28.Compare authentication types.
...ANSWER...Multifactor authentication
Mutual authentication
29.Identify password security best practices
....ANSWER...Upper case
Lower case
Numbers
Symbols
30.Identify the factors involved in a multifactor authentication technique..
..ANSWER...Something you do
Something you have
Where you are
40.Define accountability and its benefits.
..ANSWER...nonrepudiation, deterrence, intrusion detection and prevention, and
admissibility of records
41.Auditing
...ANSWER...Hold users of your system accountable. A methodical examination and
review of an organization's records.
