WGU Course C836 - Fundamentals of Information Security Quizlet by Brian MacFarlane | Certified Exam Questions with 100% Verified Answers | Newest Update 2026 – 2027 (Rated A+)

Information Security Quizlet by Brian

Questions with 100% Verified Answers




This WGU Course C836: Fundamentals of Information Security exam focuses heavily on
foundational cybersecurity frameworks, network security concepts, data state management, legal
compliance, and incident response. Students often rely on large set containing 200 comprehensive
Study Guide Set to master the precise scenario-based questions encountered on the Objective
Assessment (OA).



Below is a scannable summary of the core exam descriptions, high-frequency question types, and
key concept breakdowns featured in the 200-questions set study materials.



Core Security Models (High Frequency)

Expect up to 20% of the exam to present scenarios asking you to map real-world situations to a
specific "leg" of these foundational frameworks:

• CIA Triad:

o Confidentiality: Protecting data from unauthorized viewing (e.g., using file
encryption or turning monitors away from doorways).

o Integrity: Preventing unauthorized modification or database undos.

o Availability: Ensuring systems are accessible to authorized users when needed
(mitigating DoS attacks).

• Parkerian Hexad: Adds three elements to the CIA Triad:

o Possession/Control: The physical disposition of the media holding the data.



1

, o Authenticity: Proper attribution to the true owner or creator.

o Utility: How useful the data is (e.g., encrypted data for which the key is lost lacks
utility).



Cyberattack Classification Matrix

This exam frequently tests how different types of cyberattacks map to security principles.

Primary Impacted
Attack Type Scenario Example
Principle

Interception Confidentiality Eavesdropping on a phone call or packet sniffing.

A successful Distributed Denial of Service (DDoS)
Interruption Availability
attack.

Unauthorized database alteration or altering
Modification Integrity
transaction values.

Spoofing emails, generating fake logs, or API payload
Fabrication Integrity & Availability
injection.




Quiz_________________?

A-

ANSWER✅

______ sets limits on the use and disclosure of patient information and grants individuals
rights over their own health records.



A HIPAA

B SOX

C GLBA

D FERPA

E PCI DSS




2

, Quiz_________________?

A-

ANSWER✅

___________ provides us with the means to trace activities in our environment back to
their source.



A Accountability

B Authentication

C Access

D Nonrepudiation

E Authorization




Quiz_________________?

A-

ANSWER✅

_____________ is a sniffer that specializes in detecting wireless devices.



A Kismet

B Wireshark

C NetStumbler

D Hping3




Quiz_________________?

A-

ANSWER✅

A company implements an Internet-facing web server for its sales force to review product
information. The sales force can also update its profiles and profile photos, but not the
product information. There is no other information on this server.

3

, Which content access permissions should be granted to the sales force based on the
principle of least privilege?



A Read and limited write access

B Read and write access

C Limited write access only

D Limited read access only




Quiz_________________?

A-

ANSWER✅

A company was the victim of a security breach resulting in stolen user credentials. An
attacker used a stolen username and password to log in to an employee email account.



Which security practice could have reduced the post-breach impact of this event?



A Multi-factor authentication

B Operating system hardening

C Network segmentation

D Mutual authentication




Quiz_________________?

A-

ANSWER✅

A company's website has suffered several denial of service (DoS) attacks and wishes to
thwart future attacks.



4